P(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000500)={"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"}) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 04:52:36 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x100000000000000) 04:52:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r3, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f0000000580), 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, &(0x7f0000000000)=ANY=[@ANYBLOB="144943c2100094"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_emit_ethernet(0x5a, &(0x7f00000000c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x1e}, [{[], {0x8100, 0x7, 0xcbd, 0x2}}], {@canfd={0xd, {{0x2, 0xbc8d, 0x101, 0x7fffffff}, 0x7, 0x2, 0x0, 0x0, "1e97cc4dae2a4cb6c24fb4675d81b6e2aaea5c24ca911c36f5f836c264548bfe68645ed3c7b4b84a058db7a6648547a0d41605ba9a1420c4307c01371ecfb311"}}}}, &(0x7f0000000040)={0x1, 0x1, [0xfac, 0xbd8, 0xae1, 0x108]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 04:52:36 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_SET_MP_STATE(0xffffffffffffffff, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r3 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1004000000016) 04:52:36 executing program 2: capset(&(0x7f0000594ff8)={0x19980330}, &(0x7f0000244000)) seccomp(0x1, 0x1, &(0x7f00000000c0)={0x6, &(0x7f0000000080)=[{0x8, 0x5, 0x9, 0x8de8}, {0x0, 0x5, 0x1, 0x7ff}, {0xb3, 0x0, 0x8, 0x3}, {0x400, 0x3, 0x0, 0x4}, {0x8001, 0x7, 0x2, 0x8}, {0x7ff, 0x9, 0x948c, 0x1}]}) seccomp(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{}]}) 04:52:36 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40)=[{&(0x7f0000000840)="c9ea1cdc3a72466c3c904d191a581b01c1e8fc4e12db7deee9c5b8b3c7f9bba1ca776c0c3aba2e84ac7e178e1005b246c0b5bc918a873e312d96dc4aec9d8a40283f7b015cc3e8511f6dafd67674a590cc35e618c7b1240a669757ba582053485028f7647063387bd1581966d0cb33aa427698d90c0c0492f10f3f5267d03375f531f11d1907cdb2dd086f6136c5bb81de9d6097006b49ec676985fc219be9c88697f2af8980388eb64a8dceaf8398", 0xaf}, {&(0x7f0000000900)="6a8c2681e03e43b94e7165830eae0e13af7bb8463f32b9c11cb64da99504fc6aefd4dc2c99038c8e83c089da4106f1c4d16853ca595717b84645fedf4117f9ee85d4c5a5fd", 0x45}, {&(0x7f0000000980)="0f9e2545bf898943a986317b45a5dd79b1ba7ac460eb7794c3454d1f1829c638ae6e164727751af5fb4ab04edf2597b51f35a626024e6d02502e94ebec102f7386e9cd77229a99d7de95ff0909d016b4a7614e198208d46276b59e7f495bf94c490c00a4a17bea72240aef281ba5f1f86124", 0x72}, {&(0x7f0000000a00)="bebcb462a21802f4f65f9d54566506a6044fcbd0913fec8b5968892f573738f3a2dbe7ce6653b167ff1c990a2b040fb7e2ae83010e9bd3a001c18b095b9a", 0x3e}], 0x4, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2, 0x4e22}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) 04:52:36 executing program 2: socketpair$inet_udplite(0x2, 0x2, 0x88, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$mice(&(0x7f000000a100)='/dev/input/mice\x00', 0x0, 0x90304) ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl(r1, 0x1, &(0x7f0000000140)="12d237e960a2107b091e812ffc9b4cf8993fca094c51253380823bf7d845210dac434e0264277d3a3d7a0e0e22f243e7213fb657ba5bdeea2a5c478ff13193add092ff76fa51e4227792fe8994d763bc3ed00b7df56fc242960000260fb656addfc774b83e94c593ac6b1dd4bda745ae7e37623ba1dcfac35270e810f74a7acdd39a03f6f97ef1e7fc84d4abcf569f8443f7c21bf20f8d7f82442315eaa1abfa7380b2dbdc87bea9aec0c1d9f3eb580b6cd7be18f9eb62171e9147d287dd37aae70fdab9ad11dc0cb151ab1e4497e3f519b1d80f75b40c095a957de1a720fbd0f54d5b3bca6e") ioctl$TUNSETTXFILTER(r2, 0x400454d1, &(0x7f000000a200)=ANY=[@ANYBLOB="01000400000000000000ffffa051a1c2ffffffffffffaaaaaaaaaabb0499f40f1d29013a7209d755a798de15b1a20d1118899c0502f5dce1cc945d0a64c9272b16cd46b839142414488646b92dd1e8c39b0c8aa0fad5862c548994929bb2077779e7605efa7bd065b3a49c37ced42d2b7cedd75dd1ea57b355f2267144ee71668fa0cbd27b83f3b90ed29f483dd26e159a12fa9ffbfb3ab6c310b503e507e3d56069e765eb14c367a855d7ebf32a1dd6e48e5933d4a58973f4f987f9686c38346a6789f349963508226379c290177aa09816ddbd4d9ea24db7"]) recvmmsg(r1, &(0x7f0000009b80)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000280)=""/56, 0x38}, {&(0x7f00000002c0)=""/28, 0x1c}, {&(0x7f0000000300)=""/180, 0xb4}, {&(0x7f00000003c0)=""/86, 0x56}], 0x4, 0x0, 0x0, 0xffffffffffffffff}, 0x4}, {{&(0x7f0000000480)=@rc, 0x80, &(0x7f0000000780)=[{&(0x7f0000000500)=""/49, 0x31}, {&(0x7f0000000540)=""/246, 0xf6}, {&(0x7f0000000640)=""/113, 0x71}, {&(0x7f00000006c0)=""/84, 0x54}, {&(0x7f0000000740)=""/12, 0xc}], 0x5, 0x0, 0x0, 0x2}, 0x7}, {{&(0x7f0000000800)=@hci, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000880)=""/80, 0x50}, {&(0x7f0000000900)=""/63, 0x3f}, {&(0x7f0000000940)=""/93, 0x5d}, {&(0x7f00000009c0)=""/227, 0xe3}, {&(0x7f0000000ac0)=""/227, 0xe3}], 0x5, &(0x7f0000000c40)=""/228, 0xe4, 0x1ff}, 0xfffffffffffffffd}, {{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000d40)=""/143, 0x8f}, {&(0x7f0000000e00)=""/72, 0x48}], 0x2, &(0x7f0000000ec0)=""/147, 0x93, 0x3}, 0x40}, {{&(0x7f0000000f80)=@nl=@proc, 0x80, &(0x7f00000023c0)=[{&(0x7f0000001000)=""/106, 0x6a}, {&(0x7f0000001080)=""/27, 0x1b}, {&(0x7f00000010c0)=""/87, 0x57}, {&(0x7f0000001140)=""/4096, 0x1000}, {&(0x7f0000002140)=""/254, 0xfe}, {&(0x7f0000002240)=""/62, 0x3e}, {&(0x7f0000002280)=""/7, 0x7}, {&(0x7f00000022c0)=""/225, 0xe1}], 0x8, &(0x7f0000002440)=""/156, 0x9c, 0x4}, 0x20}, {{&(0x7f0000002500)=@ipx, 0x80, &(0x7f00000028c0)=[{&(0x7f0000002580)=""/132, 0x84}, {&(0x7f0000002640)=""/180, 0xb4}, {&(0x7f0000002700)=""/22, 0x16}, {&(0x7f0000002740)=""/177, 0xb1}, {&(0x7f0000002800)=""/173, 0xad}], 0x5, &(0x7f0000002940)=""/253, 0xfd, 0x1}, 0x9}, {{&(0x7f0000002a40)=@ll, 0x80, &(0x7f0000003d40)=[{&(0x7f0000002ac0)=""/200, 0xc8}, {&(0x7f0000002bc0)=""/31, 0x1f}, {&(0x7f0000002c00)=""/4096, 0x1000}, {&(0x7f0000003c00)=""/56, 0x38}, {&(0x7f0000003c40)=""/46, 0x2e}, {&(0x7f0000003c80)=""/173, 0xad}], 0x6, 0x0, 0x0, 0x3}}, {{&(0x7f0000003dc0)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000007200)=[{&(0x7f0000003e40)=""/217, 0xd9}, {&(0x7f0000003f40)=""/157, 0x9d}, {&(0x7f0000004000)=""/139, 0x8b}, {&(0x7f00000040c0)=""/4096, 0x1000}, {&(0x7f00000050c0)=""/73, 0x49}, {&(0x7f0000005140)=""/13, 0xd}, {&(0x7f0000005180)=""/106, 0x6a}, {&(0x7f0000005200)=""/4096, 0x1000}, {&(0x7f0000006200)=""/4096, 0x1000}], 0x9, &(0x7f00000072c0)=""/131, 0x83, 0x6b53}, 0x8}, {{&(0x7f0000007380)=@llc={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000007680)=[{&(0x7f0000007400)=""/178, 0xb2}, {&(0x7f00000074c0)=""/192, 0xc0}, {&(0x7f0000007580)=""/41, 0x29}, {&(0x7f00000075c0)=""/180, 0xb4}], 0x4, &(0x7f00000076c0)=""/12, 0xc, 0x2643}, 0x3}, {{&(0x7f0000007700)=@l2, 0x80, &(0x7f0000009ac0)=[{&(0x7f0000007780)=""/4096, 0x1000}, {&(0x7f0000008780)=""/211, 0xd3}, {&(0x7f0000008880)=""/62, 0x3e}, {&(0x7f00000088c0)=""/103, 0x67}, {&(0x7f0000008940)=""/151, 0x97}, {&(0x7f0000008a00)=""/4096, 0x1000}, {&(0x7f0000009a00)=""/166, 0xa6}], 0x7, &(0x7f0000009b40)=""/21, 0x15, 0x3f}, 0x4}], 0xa, 0x40000000, 0x0) getsockopt$inet6_tcp_buf(r3, 0x6, 0xe, &(0x7f0000009e00)=""/30, &(0x7f0000009e40)=0x1e) r4 = syz_open_dev$admmidi(&(0x7f0000009e80)='/dev/admmidi#\x00', 0xfffffffffffffff9, 0x2880) fcntl$getownex(r0, 0x10, &(0x7f0000009ec0)={0x0, 0x0}) ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r4, 0xc1105518, &(0x7f0000009f80)={{0x2, 0x6, 0x3, 0xffff, 'syz0\x00', 0x4}, 0x1, 0x20000023, 0x100000000, r5, 0x6, 0x8c0, 'syz0\x00', &(0x7f0000009f00)=['em1securitysecuritymd5sum\x00', "6d4112b0ae23b592656d6f72792e6869636800", 'syz0\x00', "6d4112b0ae23b592656d6f72792e6869636800", '/dev/snd/pcmC#D#c\x00', '\x00'], 0x58, [], [0x6, 0x609, 0x0, 0x1000]}) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x200002, 0x0) r7 = openat$cgroup_int(r6, &(0x7f0000000240)="6d4112b0ae23b592656d6f72792e6869636800", 0x2, 0x0) write$cgroup_int(r7, &(0x7f0000000040)=ANY=[@ANYRESOCT, @ANYRESOCT], 0x2e) r8 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x9f20000000, 0x800) ioctl$KVM_GET_ONE_REG(r8, 0x4010aeab, &(0x7f0000000100)={0xd18, 0x4}) [ 146.588444] *** Guest State *** [ 146.591797] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 146.601262] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 146.610263] CR3 = 0x0000000000000000 [ 146.614042] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 146.620015] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 146.625997] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 146.632665] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.640646] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.648616] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.656955] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.664936] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.672914] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.680894] GDTR: limit=0x00000000, base=0x0000000000000000 [ 146.688879] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.696850] IDTR: limit=0x00000000, base=0x0000000000000000 [ 146.704827] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.712802] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 146.719217] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 146.726668] Interruptibility = 00000000 ActivityState = 00000000 [ 146.732904] *** Host State *** [ 146.736101] RIP = 0xffffffff811f4fb4 RSP = 0xffff88019bf5f350 [ 146.742080] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 146.748490] FSBase=00007f67c778c700 GSBase=ffff8801dae00000 TRBase=fffffe0000003000 [ 146.756304] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 146.762184] CR0=0000000080050033 CR3=00000001d795f000 CR4=00000000001426f0 [ 146.769547] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87a01380 [ 146.776237] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 146.782289] *** Control State *** [ 146.785743] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 146.792506] EntryControls=0000d1ff ExitControls=0023efff [ 146.797992] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 146.804949] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 146.811631] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 146.818222] reason=80000021 qualification=0000000000000000 [ 146.824551] IDTVectoring: info=00000000 errcode=00000000 [ 146.830255] TSC Offset = 0xffffffae8e93c6b6 [ 146.834725] TPR Threshold = 0x00 [ 146.838164] EPT pointer = 0x00000001c718001e [ 146.878274] *** Guest State *** [ 146.881632] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 146.890532] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 146.899390] CR3 = 0x0000000000000000 [ 146.903109] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 146.909099] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 146.915112] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 146.921804] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.929817] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.938160] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.946162] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.954590] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.962889] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.970876] GDTR: limit=0x00000000, base=0x0000000000000000 [ 146.978855] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 146.986855] IDTR: limit=0x00000000, base=0x0000000000000000 [ 146.994836] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 147.002813] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 147.009240] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 147.016681] Interruptibility = 00000000 ActivityState = 00000000 [ 147.022911] *** Host State *** [ 147.026102] RIP = 0xffffffff811f4fb4 RSP = 0xffff88018b1a7350 [ 147.032092] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 147.038497] FSBase=00007f67c7749700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 147.046307] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 147.052197] CR0=0000000080050033 CR3=00000001d795f000 CR4=00000000001426e0 [ 147.059334] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87a01380 [ 147.066469] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 147.072546] *** Control State *** 04:52:36 executing program 0: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000000)={0x2, 0x5, 0x0, 0x4, 0x2}, 0x10}, 0x1}, 0x24040000) r1 = syz_open_dev$sndpcmp(&(0x7f0000000180)='/dev/snd/pcmC#D#p\x00', 0x2, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(r1, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000003c0)={&(0x7f0000000240)={0x14c, r2, 0x8, 0x70bd2d, 0x25dfdbfe, {0x11}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7ff}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2=0xe0000002}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@mcast2={0xff, 0x2, [], 0x1}}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xc}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e23}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x74}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x261fc87aebb108fe, 0x2c}}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3f}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x0, 0x20}}]}, @IPVS_CMD_ATTR_SERVICE={0x60, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2=0xe0000002}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xc}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x7b}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x4}}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x2f}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'rr\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x12, 0x9}}]}, @IPVS_CMD_ATTR_SERVICE={0x10, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x4, 0x31}}]}, @IPVS_CMD_ATTR_SERVICE={0x40, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wrr\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x6c}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x34}}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x40}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x1}, 0x2000c001) socket$nl_route(0x10, 0x3, 0x0) clone(0x4080000, &(0x7f0000000080)="2212ae06661caaddca474e64ec7ce51e6d6cff23fe", &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)="0feb7f3448d6ebbc9b1568ac4e26133df726d49dd12794e41939a5e426f0337e86e30a0f915b481d40") 04:52:36 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:36 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_SET_MP_STATE(0xffffffffffffffff, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r3 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1004000000016) 04:52:36 executing program 2: r0 = perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00001bf000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0}) ppoll(&(0x7f00000000c0)=[{r0}], 0x1, &(0x7f00000001c0)={r1}, &(0x7f0000000100), 0x8) r2 = dup3(r0, r0, 0x80000) ioctl$SG_GET_PACK_ID(r2, 0x227c, &(0x7f0000000080)) r3 = socket$inet6(0xa, 0x0, 0x0) ioctl(r3, 0x8912, &(0x7f0000000100)="025cc83d6d343f8f792070") getpeername$inet6(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, @mcast1}, &(0x7f0000000040)=0x1c) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x41031, 0xffffffffffffffff, 0x0) 04:52:36 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40)=[{&(0x7f0000000840)="c9ea1cdc3a72466c3c904d191a581b01c1e8fc4e12db7deee9c5b8b3c7f9bba1ca776c0c3aba2e84ac7e178e1005b246c0b5bc918a873e312d96dc4aec9d8a40283f7b015cc3e8511f6dafd67674a590cc35e618c7b1240a669757ba582053485028f7647063387bd1581966d0cb33aa427698d90c0c0492f10f3f5267d03375f531f11d1907cdb2dd086f6136c5bb81de9d6097006b49ec676985fc219be9c88697f2af8980388eb64a8dceaf8398", 0xaf}, {&(0x7f0000000900)="6a8c2681e03e43b94e7165830eae0e13af7bb8463f32b9c11cb64da99504fc6aefd4dc2c99038c8e83c089da4106f1c4d16853ca595717b84645fedf4117f9ee85d4c5a5fd", 0x45}, {&(0x7f0000000980)="0f9e2545bf898943a986317b45a5dd79b1ba7ac460eb7794c3454d1f1829c638ae6e164727751af5fb4ab04edf2597b51f35a626024e6d02502e94ebec102f7386e9cd77229a99d7de95ff0909d016b4a7614e198208d46276b59e7f495bf94c490c00a4a17bea72240aef281ba5f1f86124", 0x72}, {&(0x7f0000000a00)="bebcb462a21802f4f65f9d54566506a6044fcbd0913fec8b5968892f573738f3a2dbe7ce6653b167ff1c990a2b040fb7e2ae83010e9bd3a001c18b095b9a", 0x3e}], 0x4, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2, 0x4e22}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) 04:52:37 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40)=[{&(0x7f0000000840)="c9ea1cdc3a72466c3c904d191a581b01c1e8fc4e12db7deee9c5b8b3c7f9bba1ca776c0c3aba2e84ac7e178e1005b246c0b5bc918a873e312d96dc4aec9d8a40283f7b015cc3e8511f6dafd67674a590cc35e618c7b1240a669757ba582053485028f7647063387bd1581966d0cb33aa427698d90c0c0492f10f3f5267d03375f531f11d1907cdb2dd086f6136c5bb81de9d6097006b49ec676985fc219be9c88697f2af8980388eb64a8dceaf8398", 0xaf}, {&(0x7f0000000900)="6a8c2681e03e43b94e7165830eae0e13af7bb8463f32b9c11cb64da99504fc6aefd4dc2c99038c8e83c089da4106f1c4d16853ca595717b84645fedf4117f9ee85d4c5a5fd", 0x45}, {&(0x7f0000000980)="0f9e2545bf898943a986317b45a5dd79b1ba7ac460eb7794c3454d1f1829c638ae6e164727751af5fb4ab04edf2597b51f35a626024e6d02502e94ebec102f7386e9cd77229a99d7de95ff0909d016b4a7614e198208d46276b59e7f495bf94c490c00a4a17bea72240aef281ba5f1f86124", 0x72}, {&(0x7f0000000a00)="bebcb462a21802f4f65f9d54566506a6044fcbd0913fec8b5968892f573738f3a2dbe7ce6653b167ff1c990a2b040fb7e2ae83010e9bd3a001c18b095b9a", 0x3e}], 0x4, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2, 0x4e22}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) [ 147.076018] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 147.082699] EntryControls=0000d1ff ExitControls=0023efff [ 147.088169] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 147.095108] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 147.101777] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 147.108353] reason=80000021 qualification=0000000000000000 [ 147.114667] IDTVectoring: info=00000000 errcode=00000000 [ 147.120125] TSC Offset = 0xffffffae8e93c6b6 [ 147.124444] TPR Threshold = 0x00 [ 147.127816] EPT pointer = 0x00000001c718001e 04:52:37 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r2, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r2, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r2, 0x1) 04:52:37 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0xcf1, 0x800) syz_open_dev$dmmidi(&(0x7f0000000100)='/dev/dmmidi#\x00', 0x2, 0x40000) ioctl$LOOP_CLR_FD(r1, 0x4c01) 04:52:37 executing program 3: r0 = syz_open_dev$dspn(&(0x7f0000000440)='/dev/dsp#\x00', 0x1, 0x0) setsockopt$inet_sctp_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000000c0)={0x0, 0x200, 0xd1, "a27b9b290a7a6377429dc5e7834f0bf42a33d371f310441fe407185a377e955f38912bfdf24e3d3ed0ca440dc04f70077f035fc6bef5104f48ac6c5ddf428830fe01584ed3a52562d451b927ef87e918d6ca01e9427df2d7c1ed6699323ce22dd918e98eca291033b4fee114318015d8d3452b251e132a0e89e7d9a0f4c4f31eca3d0f5b21fa041b0ea92e8fb07c5d096291b61369603611ddd438057b834c779942c24ff589830adc89c07e7b1d65a6b7013eff62a4085a489fceafa8fdcab45e2f79f4b7f753953786c91419d029d2b8"}, 0xd9) ioctl$int_in(r0, 0x800000c0045002, &(0x7f0000000000)=0x1f40) 04:52:37 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40)=[{&(0x7f0000000900)="6a8c2681e03e43b94e7165830eae0e13af7bb8463f32b9c11cb64da99504fc6aefd4dc2c99038c8e83c089da4106f1c4d16853ca595717b84645fedf4117f9ee85d4c5a5fd", 0x45}, {&(0x7f0000000980)="0f9e2545bf898943a986317b45a5dd79b1ba7ac460eb7794c3454d1f1829c638ae6e164727751af5fb4ab04edf2597b51f35a626024e6d02502e94ebec102f7386e9cd77229a99d7de95ff0909d016b4a7614e198208d46276b59e7f495bf94c490c00a4a17bea72240aef281ba5f1f86124", 0x72}, {&(0x7f0000000a00)="bebcb462a21802f4f65f9d54566506a6044fcbd0913fec8b5968892f573738f3a2dbe7ce6653b167ff1c990a2b040fb7e2ae83010e9bd3a001c18b095b9a", 0x3e}], 0x3, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2, 0x4e22}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) 04:52:37 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:37 executing program 5: r0 = socket(0x2, 0x3, 0x3) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000002c0)={"6272696467653000000100"}) r1 = open(&(0x7f0000000000)='./file0\x00', 0x10000, 0x94) getdents64(r1, &(0x7f0000000040)=""/206, 0xce) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000140)={'veth0_to_team\x00', 0x3}) 04:52:37 executing program 0: openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/expire_nodest_conn\x00', 0x2, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) syz_fuseblk_mount(&(0x7f0000976000)='./file0\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 04:52:37 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40)=[{&(0x7f0000000980)="0f9e2545bf898943a986317b45a5dd79b1ba7ac460eb7794c3454d1f1829c638ae6e164727751af5fb4ab04edf2597b51f35a626024e6d02502e94ebec102f7386e9cd77229a99d7de95ff0909d016b4a7614e198208d46276b59e7f495bf94c490c00a4a17bea72240aef281ba5f1f86124", 0x72}, {&(0x7f0000000a00)="bebcb462a21802f4f65f9d54566506a6044fcbd0913fec8b5968892f573738f3a2dbe7ce6653b167ff1c990a2b040fb7e2ae83010e9bd3a001c18b095b9a", 0x3e}], 0x2, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2, 0x4e22}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) 04:52:37 executing program 3: pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RUNLINKAT(r1, &(0x7f0000000040)={0xffffffffffffffca, 0x4d}, 0x7) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="1f32"]) write$P9_RCREATE(r1, &(0x7f0000000080)={0x18, 0x73, 0x1}, 0x18) write$P9_RREADDIR(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB="a6000000290100000000000000000000000000000000000000000000000000000007002e2f66696c65300000000000000000000000000000000000000000000007002e2f66696c65300000000000000000000000000000000000000000000007002e2f66696c65300000000000000000000000000000002300000000000007002e2f66696c65300000000000000000000000000000000000000000000007002e2f66696c6530"], 0xa6) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x5f) ioctl$SG_GET_PACK_ID(r3, 0x227c, &(0x7f0000000200)) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r3, 0x408c5333, &(0x7f00000002c0)={0x7, 0x6, 0xc0dc, 'queue0\x00', 0x1}) openat$mixer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mixer\x00', 0x40000, 0x0) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/autofs\x00', 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='9p\x00', 0x4, &(0x7f0000000700)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c}) 04:52:37 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x10, 0x3, 0xc) mknod(&(0x7f0000000080)='./file0\x00', 0x8000, 0x0) sendmsg(r1, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000000407031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0) socket$inet6_dccp(0xa, 0x6, 0x0) [ 147.337424] bridge0: port 2(bridge_slave_1) entered disabled state [ 147.344097] bridge0: port 1(bridge_slave_0) entered disabled state 04:52:37 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x4800) connect$rds(r1, &(0x7f0000000100)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x12}}, 0x10) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:37 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40)=[{&(0x7f0000000a00)="bebcb462a21802f4f65f9d54566506a6044fcbd0913fec8b5968892f573738f3a2dbe7ce6653b167ff1c990a2b040fb7e2ae83010e9bd3a001c18b095b9a", 0x3e}], 0x1, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2, 0x4e22}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) 04:52:37 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ac}, &(0x7f0000768000), &(0x7f0000086000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) [ 147.466599] netlink: 20 bytes leftover after parsing attributes in process `syz-executor0'. [ 147.477047] 9pnet: Insufficient options for proto=fd [ 147.493397] 9pnet: Insufficient options for proto=fd [ 147.495896] netlink: 20 bytes leftover after parsing attributes in process `syz-executor0'. 04:52:37 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8914, &(0x7f00000001c0)="025cc84b6d0966be4ad1990ddef80c051d59be0eb61d3350310c5c1c5b5b64cdfae284520000678f1c212ecedc090b2fec") r1 = socket$netlink(0x10, 0x3, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x1) r2 = socket(0x1000000000000a, 0x80000000001, 0x0) ioctl(r2, 0x8001, &(0x7f0000000100)="98b68e84643da9494c1bd5fbad7be7fe6cea38d52aee16f60aad80161a4972494f057e11856f621e5c81de3b90f9e83e80f7e00e764cefbafa0113de93e1a07a4ad5ed24bb4647c21a7e792a4a93bea1c9aecef9803a9730069a3ae2caa5ecca086259ec05492859e9e35e566d7a032cea65866638ab4feb50b1f19c5491b8c22d39f91ea6f73caaa14e53e991c146b295a495e8a04b39559deab59d012ca0b3cbd8b64cf26d4dc756e5fbd10095a9ccf2") ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000002a80)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000002a40)={&(0x7f00000003c0)=@setlink={0x2c, 0x13, 0x301, 0x0, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_VFINFO_LIST={0xc, 0x16, [{0x8, 0x1, [@generic='|']}]}]}, 0x2c}, 0x1}, 0x0) 04:52:37 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000300)=0x0) r4 = syz_open_dev$mice(&(0x7f00000003c0)='/dev/input/mice\x00', 0x0, 0x101000) write$P9_RAUTH(r4, &(0x7f0000000400)={0x14, 0x67, 0x2, {0x88, 0x2, 0x3}}, 0x14) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000340)=0x0) rt_tgsigqueueinfo(r3, r5, 0x20, &(0x7f0000000380)={0x36, 0x2, 0x0, 0x4}) r6 = dup3(r0, r1, 0x80000) getsockopt$EBT_SO_GET_ENTRIES(r6, 0x0, 0x81, &(0x7f0000000280)={'broute\x00', 0x0, 0x3, 0x72, [], 0x5, &(0x7f0000000180)=[{}, {}, {}, {}, {}], &(0x7f0000000200)=""/114}, &(0x7f0000000100)=0x78) ioctl$KVM_DIRTY_TLB(r6, 0x4010aeaa, &(0x7f0000000440)={0x3f, 0x7fffffff}) socketpair(0x0, 0x5, 0x1, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r7, 0xc058534b, &(0x7f0000000500)={0x9, 0x8, 0x3a, 0x0, 0x3, 0x5}) ioctl$KVM_SET_CPUID(r2, 0x4008ae9c, &(0x7f0000000000)) 04:52:37 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2, 0x4e22}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) [ 147.967090] netlink: 4 bytes leftover after parsing attributes in process `syz-executor2'. 04:52:38 executing program 7: socket$inet6(0xa, 0x1, 0x0) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:38 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x0, 0x0) ioctl$VHOST_SET_VRING_KICK(r0, 0x8008330e, &(0x7f0000001200)) 04:52:38 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x10000, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) prctl$getreaper(0x2d, &(0x7f0000000040)) ioctl$KDGKBENT(r1, 0x4b46, &(0x7f0000000100)={0x4, 0x1, 0x1}) 04:52:38 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:38 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2, 0x4e22}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) 04:52:38 executing program 0: capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)="2f70726f635406981d8c0d809b441261c9b1181d2bfcb400000000000000000000006e61745f7237a7b7b9a63ca785557d49f367027fcc", 0x2, 0x0) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000000), &(0x7f00000000c0)=0x4) 04:52:38 executing program 2: r0 = getpid() r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x40, 0x0) ioctl$TUNGETIFF(r1, 0x800454d2, &(0x7f0000000040)) prctl$setptracer(0x59616d61, r0) socketpair$inet_sctp(0x2, 0x1, 0x84, &(0x7f0000000080)) prctl$setptracer(0x59616d61, r0) prctl$setptracer(0x59616d61, 0x0) getsockopt$inet6_udp_int(r1, 0x11, 0x65, &(0x7f00000000c0), &(0x7f0000000100)=0x4) prctl$setptracer(0x59616d61, r0) prctl$setptracer(0x59616d61, 0x0) prctl$setptracer(0x59616d61, r0) 04:52:38 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000001000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0x0, 0x0, 0x10001}) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0xa19eda2c4892e0af, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r1, 0xc008551b, &(0x7f0000000080)={0x200, 0x8, [0x2, 0xfff]}) 04:52:38 executing program 1: r0 = add_key(&(0x7f0000000040)='cifs.idmap\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000400)="9c63df60afc3c461e7b1878bbda6564eb9cc957fbab6c626b0faf9835c0963e67384c913a7b6a1d00aba5e5bcf8c3c400554eac7a063b607951658e6f66ca8d1502ff64af4396b8d0000000000000400849c9a1f9e03b0408c95ba9de24089516d59bf2b6b06655204fa49a379f8dae3885f95b80932103157e9a3c9feeb545586a6ba66af84949e0f34", 0x8a, 0x0) r1 = add_key$user(&(0x7f00000001c0)='user\x00', &(0x7f00000003c0)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000240)="3c87fdd9ecf399e751acdc1f45a643e4cf70b1e6a9f292c7df093a0800000007dcb4a69d75ec0c122a1a61924c5d23a84938230f1629e2419f8ae84e116c0fd83d56a7c39f8de933763bdb7dc7a61225243c4d7698b6c89fd082169892ffff3dd77c6c2cdd9e7c86a1c46cb6349e2f3d064ff5ce7264140000000000", 0x70, 0xffffffffffffffff) r2 = request_key(&(0x7f0000000500)="636966732e73706e6567e500b67b08dca35e357ec09abb655a2632bd5778169d2463c40963e94ec7aafe503cf3d134a5eccd737a2c212cd2c6be70531063af0cc7ed93851182f16350ee976b467bb44389dea8406bad328cc4f20996c233e37c546e9c83a3b00b3fbc4a56b6976bd3ae062f774007e74f35488615b6c52dea21663d902ba1a07b92671075214e9a50ff653a20caa2f5752707000000000000005c2a1b3ac83d3f7182b82c99632a6cbce2c207519e4778363e70979ad6c5ab339d92dec30308017f309fc72da77f10a32c8311971f2fd16911e1f9cba89b87cfe41023877e33aa051ea161dc7117a852a341", &(0x7f0000000600)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000340)='/dev/ptmx\x00', 0xfffffffffffffffc) keyctl$dh_compute(0x17, &(0x7f0000000380)={r0, r1, r2}, &(0x7f0000001480)=""/4096, 0x1000, &(0x7f0000001440)={&(0x7f00000013c0)={'sha512-avx2\x00'}, &(0x7f0000001400)="05cbaf4c5f22900885e03d1a637d7468223395a76be69e313afff568e802d992e9a498438668b53be5e9be0fad7e79ddbf7d9396056ded39b1adc0953a1ffa32", 0x40}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r4 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$VT_RESIZE(r3, 0x5609, &(0x7f00000004c0)={0x1}) socket$unix(0x1, 0x2, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) mq_open(&(0x7f0000000180)='sha512-avx2\x00', 0x80, 0x8a, &(0x7f0000000200)={0x9, 0x2, 0x8, 0x7, 0x1ff, 0x9, 0x1, 0x5}) ioctl$BINDER_THREAD_EXIT(r4, 0x40046208, 0x0) [ 148.188939] capability: warning: `syz-executor0' uses deprecated v2 capabilities in a way that may be insecure 04:52:38 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x3c) 04:52:38 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/ip_vs_stats_percpu\x00') preadv(r0, &(0x7f0000000700)=[{&(0x7f0000000600)=""/246, 0xfffffffffffffda6}], 0x1, 0x80000001) fdatasync(r0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x40) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r1, 0x404c534a, &(0x7f0000000040)={0x591, 0x3, 0x5b3}) 04:52:38 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000000)="025cc83d6d345f8f762070") r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000008000)={0x8, {{0x2, 0x0, @multicast2=0xe0000002}}}, 0x90) r2 = dup2(r1, r1) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000040)={0x4000000000001, {{0x2, 0xffffffffffffffff, @multicast2=0xe0000002}}}, 0xffffffffffffff10) mprotect(&(0x7f0000007000/0x2000)=nil, 0x2000, 0x7) setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0x7, &(0x7f0000000100)=0x1ff, 0x4) getsockopt$inet_buf(r1, 0x0, 0x30, &(0x7f0000008000), &(0x7f0000000000)=0x369) 04:52:38 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000080)="410fc71f0fe1de364b0fc76858c4e3555c2d00000000a867400f018f880e816dc744240000000000c74424020d000000c7442406000000000f011c2466ba4100b800000100ef0f01cb3645f43e440f32", 0x50}], 0x1, 0x0, &(0x7f0000000180), 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$inet6(0xa, 0x8000e, 0x1f) r3 = socket$inet6(0xa, 0x3, 0xcc) ioctl(r0, 0x100000000, &(0x7f0000000040)="025cc83d6d345f8f762070") syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000180)="baf80c66b89b48b98466efbafc0cb069ee0f09ba410066edf23e0f01dfbaf80c66b868eac48466efbafc0c66ed66b9640001c066b810bb136466bafb1b7d0d0f300f0052370f47161f0066b9800000c00f326635001000000f300f20df", 0x5d}], 0xaaaaaaaaaaaae76, 0x0, &(0x7f0000000580), 0xffffe0e) ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f0000000200)=@generic={0x2, 0xfad, 0xffffffffffffffff}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 04:52:38 executing program 0: r0 = socket$inet6(0xa, 0x1000000000002, 0x800000) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") write$binfmt_elf32(r0, &(0x7f00000002c0)={{0x7f, 0x45, 0x4c, 0x46, 0x1000, 0x400, 0x4, 0x9, 0x4, 0x0, 0x3e, 0x3ff, 0x38f, 0x38, 0x270, 0x4, 0x3ff, 0x20, 0x1, 0xc2d, 0x9}, [{0x7, 0x7, 0x4, 0xffffffffffffff80, 0x400, 0x8, 0x40, 0xa7bd}], "31388b34973baf7eab941499cbf84e3b1bd99c5b0abc6daa8c896e4f68afd8f88650ecace81dd81300b4a2c058641c01909c872943592682e477aac7764f73da30efbbe711383744dec1387c993374f3266da542ea3c9d3ce7c8b7d139bc0b9e35dbc9253d4ba7ee4805119175c6e2cf4625acb565a43a2a18aeb91e6b6a915b77c519c4d2265f63a3024e4403847957", [[], [], [], [], [], [], [], []]}, 0x8e8) socketpair(0x1d, 0x0, 0x0, &(0x7f0000000180)) 04:52:38 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:38 executing program 5: r0 = socket$inet_smc(0x2b, 0x1, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) ioctl(r1, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") listen(r0, 0x0) clock_gettime(0x4, &(0x7f0000000080)) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000000)={'tunl0\x00'}) close(r0) r2 = socket$inet(0x2, 0x8000f, 0x1000) getsockopt$inet_udp_int(r2, 0x11, 0x6f, &(0x7f00000000c0), &(0x7f0000000140)=0x4) openat$md(0xffffffffffffff9c, &(0x7f0000000040)='/dev/md0\x00', 0x40, 0x0) [ 148.387935] can: request_module (can-proto-0) failed. 04:52:38 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:38 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x3c) 04:52:38 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0xffffffffffffffff) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x20000, 0x0) execveat(r1, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)=[&(0x7f0000000140)='user.syz\x00'], &(0x7f00000002c0)=[&(0x7f0000000200)='user.syz\x00', &(0x7f0000000240)='/-@mime_type\x00'], 0x1500) lsetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@known='user.syz\x00', &(0x7f0000000180)='user.syz\x00', 0x8, 0x0) 04:52:38 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/uinput\x00', 0x0, 0x0) fcntl$addseals(r1, 0x409, 0x2) pselect6(0xfffffffffffffeec, &(0x7f0000f33fc0)={0x3ffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, &(0x7f0000768000), &(0x7f0000000100), &(0x7f0000349000), &(0x7f0000000040)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:38 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$nl_generic(0x10, 0x3, 0x10) socketpair$inet6_udp(0xa, 0x2, 0x0, &(0x7f0000000040)) sendmsg$nl_generic(r1, &(0x7f0000018000)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000013ff1)={&(0x7f0000000080)={0x20, 0x18, 0x301, 0x0, 0x0, {0x1}, [@typed={0xc, 0x3, @u64}]}, 0x20}, 0x1}, 0x0) 04:52:38 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) sendmmsg(r0, &(0x7f0000000240)=[{{&(0x7f0000000000)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x1, 0x0, 0x4, 0x4, {0xa, 0x4e23, 0x1, @dev={0xfe, 0x80, [], 0x13}, 0x200}}}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000080)="205cdc431685e9566de4a85bc2a9e801552ef2c95579a70e9066ae5eecaf715b73070bb15f02698eeabd286f82b39263bb596f3b20acf9eb419f54bf34734c25b5e98051b438629bf1d313995b6a2cd2e2bb9fc1e67464a7e285c3510bd02aadb0c53b41aa1c2616437541169c557b2fc3d8f92c6f9723106b33c1b0ff58f815341221f3c5f3b9f1f612b5c80b8c3b0f65c0d6ba6fd48744e7054fb40fe4fe9fdcdec75bbca0736d2cad68ac4b5306c395a02fd2ca96883bf732064578a6a128fe035947c6dc347f17a52ef0f733d1ddca4be378ab8fbbcbf05c88e33c9204f77f43f1325a3e66f5804cd2dae3e2b751ad0268955848033ab1e6db", 0xfb}, {&(0x7f0000000180)="1fa7f088d2293219855b61e153670ab9b49d50f1df2fb955a8b6840d450c1c7bd05d969de36b6d48ccea19d5008b628c1c1e43aebc63ea978fafc4085cf782b1d7d5bc03d4b0e0ac9c71f01d", 0x4c}], 0x2, 0x0, 0x0, 0x8000}, 0x3}], 0x1, 0x8000) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair(0x8000000000001e, 0x5, 0x0, &(0x7f000000dff8)={0xffffffffffffffff, 0xffffffffffffffff}) write$sndseq(r2, &(0x7f0000458000)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @quote={{}, 0x0, &(0x7f0000def000)={0x0, 0x0, 0x0, 0x0, @time={0x77359400}}}}, {0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @quote={{}, 0x0, &(0x7f00008e3000)={0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @connect}}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time}, {0x0, 0x0, 0x0, 0x0, @time={0x0, 0x989680}, {}, {}, @quote={{}, 0x0, &(0x7f00004f8000)={0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @result}}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @time}, {0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @queue}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @result}], 0xff9a) recvmmsg(r1, &(0x7f0000002a00)=[{{&(0x7f0000002640)=@vsock, 0x10, &(0x7f00000028c0)=[{&(0x7f00000027c0)=""/196, 0xc4}], 0x1, &(0x7f0000002940)=""/154, 0x9a}}], 0x1, 0x0, &(0x7f0000002ac0)) 04:52:38 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r1, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r2 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r2, 0x1004000000016) 04:52:38 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}, 0x58) sendmsg$rds(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000200)={0x2, 0x0, @dev={0xac, 0x14, 0x14}}, 0x10, &(0x7f0000000880)=[{&(0x7f0000000700)=""/161, 0xa1}, {&(0x7f00000007c0)=""/155, 0x9b}], 0x2}, 0x0) timerfd_create(0x7, 0x800) r2 = accept$alg(r1, 0x0, 0x0) sendmmsg$alg(r2, &(0x7f00000004c0)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000140)}], 0x1500, 0x0) 04:52:39 executing program 2: r0 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0xfff, 0x200000) ioctl$TIOCMSET(r0, 0x5418, &(0x7f0000000080)=0x5) shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x4000) pkey_alloc(0x0, 0x2) get_mempolicy(&(0x7f0000000000), &(0x7f00000001c0), 0x1ff, &(0x7f0000fff000/0x1000)=nil, 0x3) 04:52:39 executing program 0: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) sync_file_range(r0, 0x0, 0x4000000000000000, 0x1) 04:52:39 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) setsockopt$IP_VS_SO_SET_EDITDEST(r0, 0x0, 0x489, &(0x7f0000000040)={{0x2f, @broadcast=0xffffffff, 0x4e24, 0x2, 'none\x00', 0x28, 0x5, 0x18}, {@dev={0xac, 0x14, 0x14, 0x19}, 0x4e23, 0x5, 0x80000000, 0x1, 0x6}}, 0x44) ioctl$BINDER_THREAD_EXIT(0xffffffffffffffff, 0x40046208, 0x0) [ 149.072627] netlink: 'syz-executor3': attribute type 3 has an invalid length. 04:52:39 executing program 5: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f0000000100)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000f86000)='./control/file0\x00') syz_fuse_mount(&(0x7f0000000240)='./control\x00', 0x406000, 0x0, 0x0, 0x0, 0x0) close(r1) 04:52:39 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x3c) [ 149.125792] netlink: 'syz-executor3': attribute type 3 has an invalid length. 04:52:39 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r1, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r2 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r2, 0x1004000000016) 04:52:39 executing program 3: r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xd56, 0xe00) ioctl$KVM_SET_XSAVE(r0, 0x5000aea5, &(0x7f0000000040)={"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"}) setsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, &(0x7f0000000440)=0x8000, 0x4) ioctl$KVM_SET_TSC_KHZ(r0, 0xaea2, 0x5) ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f0000000480)) ioctl$KDGKBLED(r0, 0x4b64, &(0x7f00000004c0)) r1 = getpgid(0xffffffffffffffff) fcntl$setown(r0, 0x8, r1) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000500)={0x0, 0x7, 0x9, [0x1, 0x6, 0x9, 0x8, 0x2, 0xffffffff00000000, 0x5779, 0x2, 0x1000]}, &(0x7f0000000540)=0x1a) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000580)={0x0, @in6={{0xa, 0x4e23, 0x7, @dev={0xfe, 0x80, [], 0x20}, 0x7}}, 0x401, 0x8}, &(0x7f0000000640)=0x90) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000680)={r2, 0x4, 0xfffffffffffffff7, 0x1ff, 0xffffffff00000001, 0x7, 0x100000001, 0x2b0, {r3, @in={{0x2, 0x4e21, @broadcast=0xffffffff}}, 0x3, 0xffffffffffffff4d, 0x7, 0x0, 0xfffffffffffffff7}}, &(0x7f0000000740)=0xb0) ioctl$TIOCSPGRP(r0, 0x5410, &(0x7f0000000780)=r1) tee(r0, r0, 0x8, 0x8) fcntl$getownex(r0, 0x10, &(0x7f00000007c0)) ioctl$KVM_S390_UCAS_MAP(r0, 0x4018ae50, &(0x7f0000000800)={0x100000001, 0x8000, 0x5}) prctl$void(0x3f) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000840), &(0x7f0000000880)=0x4) fchdir(r0) close(r0) write$P9_RCREATE(r0, &(0x7f00000008c0)={0x18, 0x73, 0x1, {{0x8, 0x2, 0x2}, 0x100000000000000}}, 0x18) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0xc1205531, &(0x7f0000000900)={0x8, 0x1f, 0x100000000, 0xf2, [], [], [], 0x7f, 0x9, 0x4, 0x1f, "c4872305591e8732a56c45d813f49092"}) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000a40)=0xc84, 0x4) ioctl$GIO_SCRNMAP(r0, 0x4b40, &(0x7f0000000a80)=""/154) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000b40)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}, &(0x7f0000000b80)=0x10) setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000bc0)={0x800000000, 0x6, 0x4, 0x20}, 0x8) ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000c00)) r4 = syz_open_dev$midi(&(0x7f0000000c40)='/dev/midi#\x00', 0xc00, 0x40000) write$P9_RGETLOCK(r4, &(0x7f0000000c80)={0x2b, 0x37, 0x2, {0x0, 0x8, 0x7, r1, 0xd, '/dev/usbmon#\x00'}}, 0x2b) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f0000000e40)={0xc, 0x8, 0xfa00, {&(0x7f0000000cc0)}}, 0x10) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000e80)={[{0x8, 0x33, 0x3f, 0x7fffffff, 0x9, 0x101, 0x0, 0x20, 0x20, 0x10000, 0xfffffffffffffffb, 0x1ff, 0x1}, {0x4, 0x0, 0x7, 0x7, 0x6, 0x54, 0xdbbb, 0x0, 0xffffffff, 0x9, 0x800, 0x100000000, 0xb9}, {0x4, 0xaa0, 0x7, 0x2, 0x7f, 0xffff, 0x20, 0xffffffffffffffff, 0x3, 0x5, 0xffff, 0xfffffffffffffffa, 0x32}], 0x8}) 04:52:39 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f000001b000)={@multicast2=0xe0000002, @loopback=0x7f000001, @dev={0xac, 0x14}}, 0xc) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r1, 0x0, 0x27, &(0x7f0000000140)={@multicast2=0xe0000002, @loopback=0x7f000001}, 0xc) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000000)={'lo\x00'}) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000080)={'lo\x00', 0x101}) [ 149.377846] device lo entered promiscuous mode [ 149.387776] device lo left promiscuous mode 04:52:39 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) 04:52:39 executing program 0: open(&(0x7f0000000200)='./file0\x00', 0x40, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='9p\x00', 0x1000, &(0x7f0000000380)={'trans=\x00'}) mount$9p_unix(&(0x7f0000000340)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x2000ffc, &(0x7f0000000280)=ANY=[]) 04:52:39 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ptmx\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) dup2(r0, r1) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0xfffffffffffffffe, 0x0) r2 = syz_open_dev$binder(&(0x7f00000001c0)='/dev/binder#\x00', 0x0, 0x800) r3 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x30000, 0x2000) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r3, 0xc008551c, &(0x7f0000000100)={0x0, 0x18, [0x6, 0xffffffff80000000, 0xec86, 0x7, 0x1, 0x2]}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x5c, 0x0, &(0x7f0000000240)=[@transaction_sg={0x40486311, {{0x3, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x28, 0x8, &(0x7f0000000140)=[@ptr={0x70742a85, 0x1, &(0x7f0000000080), 0x1, 0x3, 0x1b}], &(0x7f0000000200)=[0x30]}, 0x8}}, @dead_binder_done={0x40086310, 0x2}, @enter_looper={0x630c}], 0xec, 0x0, &(0x7f00000002c0)="2ac00ea5423d9edc4cbc976904550f706f40a6f985aa6e613bec20db3823bf1dd4a79102a5fa5ed955bdec5ca1f0e327c04ec4fa5f9331dbe60ef548095cd49245114d277db16e4bde3fbbbd19395a41328cf2dc4f5d19f1adcbbbd2267a2f2d694b9d2d34bf15f250eb152fcf99d14390b9b46e4ac84506067903cd29363963304de2d1156841557ab2179aa26d00d62431cc6982f5509f7cda4dd9793c0c19ed00f945d463ec8f0aac7791ed2050657992e7221c676aa618b6b7bd33d453f597e3cccca883b0488f98bdbaf56cda02569ee0341a63041391d1094c80d8bf800c19628eb97988388118af15"}) setsockopt$RDS_GET_MR_FOR_DEST(r3, 0x114, 0x7, &(0x7f0000000580)={@alg={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr(des3_ede)\x00'}, {&(0x7f0000000440)=""/198, 0xc6}, &(0x7f0000000540), 0x40}, 0xa0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) 04:52:39 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r1, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r1, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r2 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r2, 0x1004000000016) 04:52:39 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @mcast1={0xff, 0x1, [], 0x1}}, 0x1a) recvmmsg(r0, &(0x7f000000a980)=[{{&(0x7f0000000400)=@nfc_llcp, 0x80, &(0x7f0000000180)}}], 0x1, 0x10000, &(0x7f000000ab00)={0x0, 0x1c9c380}) syz_emit_ethernet(0x68f, &(0x7f0000000700)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @empty, [], {@can={0xc, {{0x1, 0x9, 0x100000001}, 0x2, 0x1, 0x0, 0x0, "23ff3c1923eae7d7"}}}}, &(0x7f0000001780)) sendto$inet6(r0, &(0x7f0000000300), 0x1ce, 0x0, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @remote={0xfe, 0x80, [], 0xbb}}, 0xfffffffffffffdff) 04:52:39 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dsp\x00', 0x101000, 0x0) ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000380)=0x8) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000300)={&(0x7f0000000140)={0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x50, r2, 0x503, 0x0, 0x0, {0x9}, [@IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'gre0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback={0x0, 0x1}}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3}]}]}, 0x50}, 0x1}, 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0xa00, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000100)={0xffffffff}, 0x111, 0x100b}}, 0x20) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r3, &(0x7f0000000280)={0xb, 0x10, 0xfa00, {&(0x7f0000000040), r4, 0x218dc4e0}}, 0x18) 04:52:39 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:39 executing program 2: pause() r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/mnt\x00') fcntl$getflags(r0, 0xb) r1 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x6, 0x81) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000080)='veth0_to_team\x00', 0x10) syz_mount_image$nfs(&(0x7f00000000c0)='nfs\x00', &(0x7f0000000100)='./file0\x00', 0x5, 0x1, &(0x7f0000000240)=[{&(0x7f0000000140)="5f5d07fb5d3420b777f57f94e8c858d919edd7699c13c7c3dda8be96e99649f8cb80a5e7efc523f8f6988762cd636c86988f8503a904629eb95465b31a7b1b4ef2f989c5961781ca49bbcd0a3f173fe7cb568e26f69ffd2cb17fc69dbd941536985324d1b5cf9576cebd69a12240f96f38ff01fac182d16ee0f64543570b01ec8bfe02881d67178d6dacf4bca8a071fcc7fd4ac426156a36a6317513bc848fdf34c502de2323c3a1591caecf0990d63255d3e3961d994677a0c2430f472e7d843433c39d014bf8", 0xc7, 0x1fe2598d8000000}], 0x8000, &(0x7f0000000280)='/dev/snd/pcmC#D#p\x00') ioctl$SG_GET_REQUEST_TABLE(r1, 0x2286, &(0x7f00000002c0)) setns(r1, 0x2000000) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000440)={0x0, 0x0, 0x5}, &(0x7f0000000480)=0x8) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f00000004c0)={r2, 0x6}, 0x8) syz_mount_image$jfs(&(0x7f0000000500)='jfs\x00', &(0x7f0000000540)='./file0\x00', 0xfffffffffffffffa, 0x1, &(0x7f0000000640)=[{&(0x7f0000000580)="5744ff4561488cc9f37ba3c23f79982e965003e888822fdcc401e5c80933d55b120d57221797d2846d361c93c13389b48b5a70957111d52312174b36e36c4d0b8491b0a4c1abdc78f5af4d597671438653266397ab1948d3b31ac3ebf0787c3d06c3a001bcb9f65279764987063b9dbb8132ac19013ec2a5c0f716e1d94783b810fdb9c4e7f387bbca03c4c4fd71281185f85af448829fd8ce7415117c44bba9c5177d9725a72d450d44267780b58e33cc36bb89e69f", 0xb6, 0x8000}], 0x240000, &(0x7f0000000680)={[{@iocharset={'iocharset', 0x3d, 'maccroatian'}, 0x2c}, {@grpquota='grpquota', 0x2c}]}) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/vcs\x00', 0x200, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000700)={r2, 0x40}, 0x8) ioctl$EVIOCGPHYS(r3, 0x80404507, &(0x7f0000000740)) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000840)={r2, 0x84, &(0x7f0000000780)=[@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, @in6={0xa, 0x4e24, 0x1, @loopback={0x0, 0x1}, 0x771}, @in={0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}, @in6={0xa, 0x4e22, 0x9, @loopback={0x0, 0x1}, 0xfffffffffffffffd}, @in={0x2, 0x4e22, @broadcast=0xffffffff}, @in6={0xa, 0x4e23, 0x8, @loopback={0x0, 0x1}, 0x73b}]}, &(0x7f0000000880)=0x10) setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f00000008c0)={0x7e, @remote={0xac, 0x14, 0x14, 0xbb}, 0x4e21, 0x4, 'sed\x00', 0x0, 0x0, 0x1b}, 0x2c) ioctl$TIOCGPTPEER(r3, 0x5441, 0x5) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000900)={r3, r1, 0x4, 0x3}, 0x10) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000940)=0xd20000000, 0x4) r5 = accept4(r3, &(0x7f0000000980), &(0x7f0000000a00)=0x80, 0x800) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000a40)={0xf0, 0x400, 0x401, 0x100000000, 0x8, 0xc3, 0x1c, 0x100000000, 0x100000001, 0x4, 0x3f, 0x8}) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000ac0)={r3, 0x28, &(0x7f0000000a80)}, 0x10) ioctl$PERF_EVENT_IOC_REFRESH(r3, 0x2402, 0x6) getpeername$packet(r5, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000b40)=0x14) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000b80), 0x0) write$P9_RSYMLINK(r3, &(0x7f0000000bc0)={0x14, 0x11, 0x1, {0x28, 0x4}}, 0x14) getsockopt$inet_mreqn(r3, 0x0, 0x24, &(0x7f0000000c00)={@rand_addr, @multicast2}, &(0x7f0000000c40)=0xc) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f0000000c80)={0x7, 0x5, 0x9}) setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000000cc0)={0x0, 'irlan0\x00', 0x4}, 0x18) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r5, 0x84, 0x79, &(0x7f0000000d00)={r4, 0x9, 0x400}, 0x8) [ 149.908451] binder: 9841:9847 got transaction to invalid handle [ 149.914663] binder: 9841:9847 transaction failed 29201/-22, size 40-8 line 2852 04:52:39 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:39 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r3 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1004000000016) 04:52:39 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) [ 149.963330] EXT4-fs (sda1): re-mounted. Opts: [ 149.976093] EXT4-fs (sda1): re-mounted. Opts: [ 149.995344] binder: 9841:9847 got transaction to invalid handle [ 150.001564] binder: 9841:9847 transaction failed 29201/-22, size 40-8 line 2852 04:52:40 executing program 5: io_setup(0x4, &(0x7f0000000040)=0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x40800, 0x0) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x800, 0x0) io_cancel(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x26, r1, &(0x7f0000000240)="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", 0x1000, 0x3, 0x0, 0x1, r2}, &(0x7f0000000140)) r3 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x0, 0x0) ioctl$RNDGETENTCNT(r3, 0x80045200, &(0x7f0000000200)) 04:52:40 executing program 0: open(&(0x7f0000000200)='./file0\x00', 0x40, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='9p\x00', 0x1000, &(0x7f0000000380)={'trans=\x00'}) mount$9p_unix(&(0x7f0000000340)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x2000ffc, &(0x7f0000000280)=ANY=[]) 04:52:40 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffff}, 0x117, 0x5}}, 0x20) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r1, &(0x7f0000000240)={0xb, 0x10, 0xfa00, {&(0x7f0000000180), r2, 0x6}}, 0x18) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:40 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r3 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1004000000016) 04:52:40 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x3c) 04:52:40 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) 04:52:40 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000180)=""/212) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) [ 150.155164] EXT4-fs (sda1): re-mounted. Opts: 04:52:40 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r3 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1004000000016) 04:52:40 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4040ae9e, &(0x7f0000000140)={0x0, 0x0, [0x40, 0x4]}) 04:52:40 executing program 3: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f00000001c0)={'veth0_to_bridge\x00', {0x2, 0x4e23, @broadcast=0xffffffff}}) bpf$MAP_CREATE(0x0, &(0x7f0000214fd4)={0x5, 0x4, 0x6, 0x8000000000009, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0xa]}, 0x2c) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x100, 0x0) connect$l2tp(r1, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x4e24, @multicast1=0xe0000001}, 0x1, 0x1, 0x4}}, 0x2e) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000040)={0x0, 0x85, "eff9e95512c471fdc7c30199cfa37174ff5ffac8f609e35513166ee47b7506c1595fe3e556c32c62c2cda08e8d085333d81a1b5704c7b8bf94e86d3209eba576389d69fbc841f3414415d34f237d5f7df514b71908b3ce8e7152c72abd6ad8dbfe5868f23bdf9394087de0cc9764748e72e123e499960025af761b8a042ab9a1a9274fc753"}, &(0x7f0000000100)=0x8d) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000140)={r2, 0x4, 0x6, 0x9, 0x8001, 0x4}, 0x14) 04:52:40 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x8, 0x440) 04:52:40 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x2c) 04:52:41 executing program 4: socket$inet6(0xa, 0x3000000000002, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r3 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1004000000016) 04:52:41 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) 04:52:41 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cgroup.stat\x00', 0x0, 0x0) write$tun(r0, &(0x7f0000000080)={@void, @val={0x3, 0x0, 0xef, 0x80, 0x7fff, 0x7}, @eth={@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x20}, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [{[{0x9100, 0x2, 0x4, 0x3}], {0x8100, 0x8, 0x6ae, 0x1}}], {@ipx={0x8137, {0xffff, 0x1e, 0x4, 0x4, {@random, @random="26bd3f269439", 0x7f}, {@random=0x7, @random="dbd3be8a763f", 0x2}}}}}}, 0x3e) syz_emit_ethernet(0x1, &(0x7f00000000c0)=ANY=[@ANYRES64], &(0x7f0000000000)={0x0, 0x0, [0x207]}) 04:52:41 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:41 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:41 executing program 2: r0 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r0, 0x8912, &(0x7f0000000000)="02c83d6d345f8f7620700047e483e84bd953756cbca1a1ee9bfc56") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, &(0x7f00000001c0), 0x1f, 0x3) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x8e6, @mcast2={0xff, 0x2, [], 0x1}, 0x101}, 0x1c) 04:52:41 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:41 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) mlock(&(0x7f00009d7000/0x4000)=nil, 0x4000) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") madvise(&(0x7f000092d000/0x400000)=nil, 0x400000, 0x10200000003) r1 = dup3(r0, r0, 0x80000) sendmsg$nl_crypto(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x98000400}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)=@del={0xf8, 0x11, 0x200, 0x70bd2d, 0x25dfdbfd, {{'xts(camellia)\x00'}, [], [], 0x400, 0x400}, [{0x8, 0x1, 0x2}, {0x8, 0x1}, {0x8, 0x1, 0x2000000}]}, 0xf8}, 0x1, 0x0, 0x0, 0x8081}, 0x0) 04:52:41 executing program 5: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = fcntl$dupfd(r0, 0x407, r0) capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000cc0000)) bind$bt_rfcomm(r1, &(0x7f0000000040)={0x1f, {0xffffffffffffffff, 0xffffffff, 0x4}}, 0xa) 04:52:41 executing program 6 (fault-call:2 fault-nth:0): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:41 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x2000, 0x0) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000140)={0x1, 0x2001, 0x3, 0xd60f, 0x1}) ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, &(0x7f0000000000)=""/250) 04:52:41 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xc}}, @in={0x2, 0x4e20, @multicast2=0xe0000002}, @in6={0xa, 0x4e23, 0x2, @local={0xfe, 0x80, [], 0xaa}, 0x5}], 0x4c) 04:52:41 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x80) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000040)=0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r1, 0xc1105511, &(0x7f0000000200)={{0xa, 0x1, 0x67, 0xffffffff, 'syz0\x00', 0x401}, 0x4, 0x200, 0x3f, r2, 0x5, 0x7, 'syz0\x00', &(0x7f0000000180)=['\x00', '!selinuxvboxnet0#\'vboxnet0wlan1@,\x00', '/dev/ptmx\x00', '/dev/binder#\x00', '/dev/binder#\x00'], 0x47, [], [0x22, 0x7, 0x3, 0x1000]}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:41 executing program 2: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x121000, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r0, 0xc0305710, &(0x7f0000000080)={0x1, 0xfffffffffffffffb, 0x5500000000000000, 0x6}) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x1, 0x0) getpeername$netlink(r1, &(0x7f00000000c0), &(0x7f0000000100)=0xc) ioctl$int_in(r1, 0x800000800c5012, &(0x7f0000006000)) 04:52:41 executing program 3: r0 = open(&(0x7f0000000040)='./file0\x00', 0x20000, 0x88) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r0, 0x28, 0x0, &(0x7f0000000080)=0x7fffffff, 0x8) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f00000000c0)=[{&(0x7f0000010000)="000100000008000081000000c9030000f4000204000000000300000000000000002000000020000000010000000000016e5fbe5a0000ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000340)) 04:52:41 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = dup(r0) ioctl$IOC_PR_PREEMPT_ABORT(r1, 0x401870cc, &(0x7f0000000040)={0xfffffffffffffffd, 0xfffffffffffffffc, 0x8, 0x8001}) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) [ 151.330060] FAULT_INJECTION: forcing a failure. [ 151.330060] name failslab, interval 1, probability 0, space 0, times 1 [ 151.341359] CPU: 0 PID: 9977 Comm: syz-executor6 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 151.349688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 151.359046] Call Trace: [ 151.361634] dump_stack+0x1c9/0x2b4 [ 151.365247] ? dump_stack_print_info.cold.2+0x52/0x52 [ 151.370437] should_fail.cold.4+0xa/0x11 [ 151.374487] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 151.379584] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 151.384598] ? filemap_map_pages+0xca2/0x1990 [ 151.389081] ? trace_hardirqs_on+0x10/0x10 [ 151.393306] ? trace_hardirqs_on+0x10/0x10 [ 151.397528] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 151.403063] ? trace_hardirqs_on+0x10/0x10 [ 151.407298] ? lock_acquire+0x1e4/0x540 [ 151.411261] ? trace_hardirqs_on+0x10/0x10 [ 151.415492] ? trace_hardirqs_on+0x10/0x10 [ 151.419720] ? find_get_entries_tag+0x1410/0x1410 [ 151.424555] ? check_same_owner+0x340/0x340 [ 151.428952] ? unmap_mapping_pages+0x1fe/0x5b0 [ 151.433526] ? rcu_note_context_switch+0x730/0x730 [ 151.438449] __should_failslab+0x124/0x180 [ 151.442688] should_failslab+0x9/0x14 [ 151.446476] kmem_cache_alloc+0x2af/0x760 [ 151.450625] jbd2__journal_start+0x1e7/0xa80 [ 151.455037] ? jbd2_write_access_granted.part.9+0x430/0x430 [ 151.460749] ? rcu_note_context_switch+0x730/0x730 [ 151.465666] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 151.471196] __ext4_journal_start_sb+0x182/0x600 [ 151.475938] ? ext4_collapse_range+0x97e/0x1170 [ 151.480617] ? ext4_journal_abort_handle.isra.5+0x260/0x260 [ 151.486312] ? ext4_ext_index_trans_blocks+0x11f/0x150 [ 151.491581] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 151.497101] ? ext4_meta_trans_blocks+0x25f/0x310 [ 151.501929] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 151.507451] ? ext4_writepage_trans_blocks+0x182/0x350 [ 151.512720] ext4_collapse_range+0x97e/0x1170 [ 151.517214] ? ext4_fiemap+0x1850/0x1850 [ 151.521262] ? pid_task+0x115/0x200 [ 151.524871] ? find_vpid+0xf0/0xf0 [ 151.528404] ? __f_unlock_pos+0x19/0x20 [ 151.532368] ext4_fallocate+0xce5/0x2330 [ 151.536411] ? __fget+0x4d5/0x740 [ 151.539858] ? ext4_insert_range+0x13d0/0x13d0 [ 151.544470] ? kasan_check_write+0x14/0x20 [ 151.548692] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 151.553612] ? fsnotify+0xbac/0x14e0 [ 151.557312] ? lock_acquire+0x1e4/0x540 [ 151.561269] ? vfs_fallocate+0x72a/0x940 [ 151.565312] ? fsnotify_first_mark+0x350/0x350 [ 151.569888] ? lock_release+0xa30/0xa30 [ 151.573854] ? check_same_owner+0x340/0x340 [ 151.578191] ? __fget_light+0x2f7/0x440 [ 151.582156] ? rcu_note_context_switch+0x730/0x730 [ 151.588036] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 151.593557] ? __sb_start_write+0x17f/0x300 [ 151.597862] ? ext4_insert_range+0x13d0/0x13d0 [ 151.602427] vfs_fallocate+0x4b4/0x940 [ 151.606303] ksys_fallocate+0x56/0x90 [ 151.610087] __x64_sys_fallocate+0x97/0xf0 [ 151.614315] do_syscall_64+0x1b9/0x820 [ 151.618196] ? finish_task_switch+0x1d3/0x870 [ 151.622691] ? syscall_return_slowpath+0x5e0/0x5e0 [ 151.627608] ? syscall_return_slowpath+0x31d/0x5e0 [ 151.632524] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 151.637629] ? prepare_exit_to_usermode+0x291/0x3b0 [ 151.642630] ? perf_trace_sys_enter+0xb10/0xb10 [ 151.647282] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 151.652113] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 151.657282] RIP: 0033:0x455e29 [ 151.660883] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 151.680031] RSP: 002b:00007efc2af98c68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 151.687731] RAX: ffffffffffffffda RBX: 00007efc2af996d4 RCX: 0000000000455e29 [ 151.694985] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000013 [ 151.702251] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 151.709526] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000014 [ 151.716790] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000000 [ 151.829370] binder: 9986:9993 ioctl 401870cc 20000040 returned -22 [ 151.837079] EXT4-fs (loop3): bad block size 8192 [ 151.854895] EXT4-fs (loop3): bad block size 8192 [ 151.859831] binder: 9986:9993 ioctl 401870cc 20000040 returned -22 04:52:41 executing program 4: socket$inet6(0xa, 0x3000000000002, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r3 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1004000000016) 04:52:41 executing program 5: r0 = socket$inet6(0xa, 0x1000000000003, 0x0) ioctl(r0, 0x3, &(0x7f0000000000)="02912a1d8d071bc6ee2070c5063dc2107513bf19e69289b45467437fe7bbda9803e4fe28d041fb5dced747ea551b6bf4adfc8fef222a5307a182826fad170fe8e1f130a442b2cee1dd307000b17376e5b49a6855") syz_mount_image$msdos(&(0x7f0000000300)='msdos\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f0000000380)={[{@fat=@time_offset={'time_offset', 0x3d, [0x38]}, 0x2c}]}) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffff9c, 0x84, 0x22, &(0x7f0000000080)={0x1, 0x2, 0x2, 0x2, 0x0}, &(0x7f00000000c0)=0x10) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000100)={r1, 0x1, 0x7fffffff, 0x6, 0x3ff}, 0x14) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000140)={r1, @in={{0x2, 0x4e21, @multicast1=0xe0000001}}}, 0x84) r2 = open(&(0x7f0000000200)='./file0\x00', 0x70000, 0x8) ioctl$KDGKBSENT(r2, 0x4b48, &(0x7f0000000240)={0xffffffff, 0x7f, 0x8}) 04:52:41 executing program 6 (fault-call:2 fault-nth:1): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:41 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) 04:52:41 executing program 2: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vhost-vsock\x00', 0x2, 0x0) r1 = socket$inet6(0xa, 0xa, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000000340)={{{@in=@broadcast, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@mcast2}}, &(0x7f0000000200)=0xffffffffffffffeb) getresgid(&(0x7f0000000240)=0x0, &(0x7f00000002c0), &(0x7f0000000300)) syz_fuseblk_mount(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0x4000, r2, r3, 0x2, 0x9, 0x80) syncfs(r1) close(r0) r4 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r4, 0x4008240b, &(0x7f0000000140)={0x1, 0x70, 0x4, 0x8000, 0x3d2, 0x2, 0x0, 0x1, 0x88820, 0x1, 0x3f, 0x37, 0x80, 0xd0f, 0x9, 0x6, 0x4, 0x1, 0xe9a, 0x2, 0x2, 0x2, 0x3f, 0x80000000, 0xef, 0x7, 0x345b, 0x5, 0x1, 0xa2, 0xfffffffffffffe01, 0x3, 0x6, 0xda, 0x25, 0x4, 0x4, 0x4, 0x0, 0x20, 0x2, @perf_config_ext={0x0, 0x2}, 0x8, 0x8a, 0x7998, 0x7, 0x9, 0x5, 0x100}) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-vsock\x00', 0x2, 0x0) 04:52:41 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0xffffffffffffffff, 0x800000000000000) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000100)={0xe8, 0xffffffff, 0xace}) fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, 0x0}) sched_getscheduler(r2) 04:52:41 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) wait4(0x0, &(0x7f0000000300), 0x0, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_ZERO(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="2885457a31806709765838dc97465a7a8e947fb50e99332205ca7c23d3996f1424d2a2db473e37637749e6469b0e8b54f488d56e35dd24ca5a64da2aa20ff403028a8b3e9ce8332bbcabb6f17428f8c6b04c1ec6565bc1d75b809a63fca1c05066dff6f6a40a114ad3a1330ca57acc3dc210f7123c", @ANYBLOB="010000000000000000001000000a0000060000000000000000000000000000000000"], 0x2}, 0x1}, 0x0) 04:52:41 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:41 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x15) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f00004f0000)=0x1, 0x28e) socket$inet6(0xa, 0x3, 0x1800) r1 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x4, 0x8000) ioctl$LOOP_SET_CAPACITY(r1, 0x4c07) bind$netlink(r0, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfb, 0x10000000}, 0x0) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x10000, 0x0) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r2, 0x6, 0x21, &(0x7f0000000040)="7d02d0da500a6ef7e9f63d8b97f9bf84", 0x10) getsockopt$EBT_SO_GET_INFO(r2, 0x0, 0x80, &(0x7f0000000140)={'filter\x00'}, &(0x7f00000000c0)=0x78) 04:52:42 executing program 1: r0 = msgget$private(0x0, 0x140) msgsnd(r0, &(0x7f0000000180)={0x3, "f8ad5cbee0052a13d974f871933e813b860d7473d0f66a5c4f4cb94ea8a4cf7c6343bae3fc0967aceea0d5ec3e72e51d3b7d8102ff2952a22c594395c430ecadbe7f2e6cc40dec1bf6b47ff76449a9b9e42b78e45b7815b54b078d619aeae448819d00c1cece97af78eb6a8f8423fcc80fe5a4114f479c905245c896d7970f8d42748af55cebb7d53ca2c131aeadddce16409b3f"}, 0x9c, 0x800) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r2 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x2001, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x12, r1, 0x0) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) 04:52:42 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) [ 152.060715] FAULT_INJECTION: forcing a failure. [ 152.060715] name failslab, interval 1, probability 0, space 0, times 0 [ 152.072095] CPU: 0 PID: 10022 Comm: syz-executor6 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 152.080506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 152.089866] Call Trace: [ 152.092470] dump_stack+0x1c9/0x2b4 [ 152.096114] ? dump_stack_print_info.cold.2+0x52/0x52 [ 152.101313] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 152.106335] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 152.111086] should_fail.cold.4+0xa/0x11 [ 152.115139] ? lock_acquire+0x1e4/0x540 [ 152.119133] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 152.124231] ? lock_release+0xa30/0xa30 [ 152.128191] ? kasan_check_read+0x11/0x20 [ 152.132340] ? rcu_is_watching+0x8c/0x150 [ 152.136505] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 152.141176] ? is_bpf_text_address+0xd7/0x170 [ 152.145681] ? kernel_text_address+0x79/0xf0 [ 152.150101] ? __kernel_text_address+0xd/0x40 [ 152.154594] ? unwind_get_return_address+0x61/0xa0 [ 152.159509] ? __save_stack_trace+0x8d/0xf0 [ 152.163822] ? jbd2__journal_start+0x162/0xa80 [ 152.168388] ? check_same_owner+0x340/0x340 [ 152.172694] ? rcu_note_context_switch+0x730/0x730 [ 152.177611] ? save_stack+0xa9/0xd0 [ 152.181228] ? rcu_note_context_switch+0x730/0x730 [ 152.186150] __should_failslab+0x124/0x180 [ 152.190384] should_failslab+0x9/0x14 [ 152.194174] __kmalloc+0x2c8/0x760 [ 152.197697] ? __ext4_journal_start_sb+0x18a/0x600 [ 152.202613] ? do_raw_spin_unlock+0xa7/0x2f0 [ 152.207197] ? ext4_ext_remove_space+0x294/0x4bb0 [ 152.212031] ? ext4_journal_abort_handle.isra.5+0x260/0x260 [ 152.217727] ? ext4_find_extent+0x775/0xa10 [ 152.222042] ext4_find_extent+0x775/0xa10 [ 152.226175] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 152.231263] ext4_ext_remove_space+0x1816/0x4bb0 [ 152.236012] ? __kasan_slab_free+0x131/0x170 [ 152.240414] ? trace_hardirqs_on+0xd/0x10 [ 152.244569] ? ext4_ext_index_trans_blocks+0x150/0x150 [ 152.249838] ? ext4_es_can_be_merged+0x2a0/0x2a0 [ 152.254589] ? ext4_exit_mballoc+0xc0/0xc0 [ 152.258811] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 152.263832] ? __es_tree_search.isra.13+0x1ba/0x220 [ 152.268835] ? __es_remove_extent+0x9a3/0xba0 [ 152.273310] ? ext4_es_remove_extent+0x12a/0x4e0 [ 152.278062] ? lock_downgrade+0x8f0/0x8f0 [ 152.282203] ? ext4_es_scan+0x970/0x970 [ 152.286187] ? lock_release+0xa30/0xa30 [ 152.290577] ? ext4_collapse_range+0xa83/0x1170 [ 152.295237] ? do_raw_write_trylock+0x1c0/0x1c0 [ 152.299895] ? kasan_check_write+0x14/0x20 [ 152.304139] ? _raw_write_unlock+0x22/0x30 [ 152.308363] ? ext4_es_remove_extent+0x12f/0x4e0 [ 152.313110] ? ext4_es_lookup_extent+0xde0/0xde0 [ 152.317864] ? down_write+0x8f/0x130 [ 152.321561] ? ext4_collapse_range+0xa83/0x1170 [ 152.326300] ? down_read+0x1d0/0x1d0 [ 152.330009] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 152.335536] ? ext4_writepage_trans_blocks+0x182/0x350 [ 152.340798] ext4_collapse_range+0xac8/0x1170 [ 152.345287] ? ext4_fiemap+0x1850/0x1850 [ 152.349332] ? pid_task+0x115/0x200 [ 152.352940] ? find_vpid+0xf0/0xf0 [ 152.356471] ? __f_unlock_pos+0x19/0x20 [ 152.360436] ext4_fallocate+0xce5/0x2330 [ 152.364488] ? __fget+0x4d5/0x740 [ 152.367930] ? ext4_insert_range+0x13d0/0x13d0 [ 152.372506] ? kasan_check_write+0x14/0x20 [ 152.376727] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 152.381650] ? fsnotify+0xbac/0x14e0 [ 152.385360] ? lock_acquire+0x1e4/0x540 [ 152.389317] ? vfs_fallocate+0x72a/0x940 [ 152.393372] ? fsnotify_first_mark+0x350/0x350 [ 152.397938] ? lock_release+0xa30/0xa30 [ 152.401905] ? check_same_owner+0x340/0x340 [ 152.406223] ? __fget_light+0x2f7/0x440 [ 152.410183] ? rcu_note_context_switch+0x730/0x730 [ 152.415130] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 152.420655] ? __sb_start_write+0x17f/0x300 [ 152.424971] ? ext4_insert_range+0x13d0/0x13d0 [ 152.429538] vfs_fallocate+0x4b4/0x940 [ 152.433421] ksys_fallocate+0x56/0x90 [ 152.437227] __x64_sys_fallocate+0x97/0xf0 [ 152.441459] do_syscall_64+0x1b9/0x820 [ 152.445329] ? finish_task_switch+0x1d3/0x870 [ 152.449809] ? syscall_return_slowpath+0x5e0/0x5e0 [ 152.454725] ? syscall_return_slowpath+0x31d/0x5e0 [ 152.459656] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 152.464673] ? prepare_exit_to_usermode+0x291/0x3b0 [ 152.469676] ? perf_trace_sys_enter+0xb10/0xb10 [ 152.474330] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 152.479177] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 152.484351] RIP: 0033:0x455e29 [ 152.487520] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 152.506677] RSP: 002b:00007efc2af98c68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 152.514396] RAX: ffffffffffffffda RBX: 00007efc2af996d4 RCX: 0000000000455e29 [ 152.521662] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000013 [ 152.528927] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 152.536188] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000014 [ 152.543438] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000001 04:52:42 executing program 6 (fault-call:2 fault-nth:2): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:42 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000000)=@srh={0x0, 0x0, 0x4}, 0x8) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}}, 0x1c) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) close(r0) io_setup(0x7, &(0x7f0000000080)) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x154, @remote={0xfe, 0x80, [], 0xbb}, 0xf91}, 0x1c) 04:52:42 executing program 5: r0 = open(&(0x7f0000000000)='./file0\x00', 0x20800, 0x63) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000240)={0xffffffff}, 0x13f, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f00000002c0)={0x13, 0x10, 0xfa00, {&(0x7f0000000040), r1, 0x2}}, 0x18) setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f0000000300)=0x8000, 0x2) r2 = open(&(0x7f0000000340)='./file0\x00', 0x300, 0x152) accept4$inet6(r2, 0x0, &(0x7f0000000380), 0x800) ioctl$PIO_FONTRESET(r2, 0x4b6d, 0x0) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f00000005c0)={0x13, 0x10, 0xfa00, {&(0x7f00000003c0), r1, 0x2}}, 0x18) r3 = syz_open_dev$vcsa(&(0x7f0000000600)='/dev/vcsa#\x00', 0xff, 0x90000) prctl$setmm(0x23, 0x6, &(0x7f0000ffb000/0x2000)=nil) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000680)={&(0x7f0000000640)='./file0\x00', r3}, 0x10) write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f00000006c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x6, @ipv4={[], [0xff, 0xff], @rand_addr=0x5}, 0x68ff}, {0xa, 0x4e20, 0x4, @loopback={0x0, 0x1}, 0x7}, r1, 0x2e}}, 0x48) ioctl$EVIOCGEFFECTS(r3, 0x80044584, &(0x7f0000000740)=""/189) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000800)={0x3, 0x40, 0xfa00, {{0xa, 0x4e22, 0x1, @local={0xfe, 0x80, [], 0xaa}, 0x8}, {0xa, 0x4e22, 0x9, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}, 0xce}, r1, 0x1bc}}, 0x48) ioctl$TIOCMBIS(r3, 0x5416, &(0x7f0000000880)=0xffffffffffff0001) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f00000008c0)={0x0}, &(0x7f0000000900)=0x8) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r3, 0x84, 0x79, &(0x7f0000000940)={r4, 0x8, 0x3}, 0x8) socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000980)={0xffffffffffffffff}) getsockopt$sock_linger(r5, 0x1, 0xd, &(0x7f00000009c0), &(0x7f0000000a00)=0x8) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000ac0)={r4, 0x78, &(0x7f0000000a40)=[@in6={0xa, 0x4e20, 0x40, @local={0xfe, 0x80, [], 0xaa}, 0x8}, @in6={0xa, 0xaec0, 0x7, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10001}, @in={0x2, 0x4e23, @rand_addr=0x3}, @in={0x2, 0x4e20}, @in={0x2, 0x4e21, @rand_addr=0x2}, @in={0x2, 0x4e22, @multicast2=0xe0000002}]}, &(0x7f0000000b00)=0x10) write$binfmt_script(r5, &(0x7f0000000b40)={'#! ', './file0', [], 0xa, "5b531517dae801d63642ebe85ed25e3ca79b6ff7ea1ff318ef72e6fe608f615c7c9a98aad0e4867ddc904eab7741022455ddffbaf0fa000a02396be23eb75f9926b997a3639d2d1b685d7badc12900c6f70a09712a9c49ee46c30083a27068b547e9a6619ccf2b16d0385796566206f0a5827de471839a28b8716e7072c659ac943cd4601cfe688f4b604b9555d8d7484a"}, 0x9c) setsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000c00)=0x6, 0x2) ioctl$BLKGETSIZE(r2, 0x1260, &(0x7f0000000c40)) r7 = getpgrp(0x0) process_vm_readv(r7, &(0x7f0000000e00)=[{&(0x7f0000000c80)=""/235, 0xeb}, {&(0x7f0000000d80)=""/124, 0x7c}], 0x2, &(0x7f0000001140)=[{&(0x7f0000000e40)=""/50, 0x32}, {&(0x7f0000000e80)=""/234, 0xea}, {&(0x7f0000000f80)=""/61, 0x3d}, {&(0x7f0000000fc0)=""/50, 0x32}, {&(0x7f0000001000)=""/57, 0x39}, {&(0x7f0000001040)=""/87, 0x57}, {&(0x7f00000010c0)=""/127, 0x7f}], 0x7, 0x0) setsockopt$RDS_GET_MR_FOR_DEST(r2, 0x114, 0x7, &(0x7f00000012c0)={@pptp={0x18, 0x2, {0x1, @local={0xac, 0x14, 0x14, 0xaa}}}, {&(0x7f00000011c0)=""/192, 0xc0}, &(0x7f0000001280), 0x9}, 0xa0) openat$dsp(0xffffffffffffff9c, &(0x7f0000001380)='/dev/dsp\x00', 0x141080, 0x0) openat$null(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/null\x00', 0x1, 0x0) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000001400)={r6, 0x10000000}, 0x8) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000001440)=0x9, 0x4) [ 152.560639] FAT-fs (loop5): bogus number of reserved sectors [ 152.566532] FAT-fs (loop5): Can't find a valid FAT filesystem [ 152.598287] FAT-fs (loop5): bogus number of reserved sectors [ 152.604183] FAT-fs (loop5): Can't find a valid FAT filesystem 04:52:42 executing program 3: keyctl$set_reqkey_keyring(0xe, 0x6) r0 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x7fff, 0x2880) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/mixer\x00', 0x400, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000140)={{{@in6=@mcast2, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6}}, &(0x7f0000000240)=0xe8) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000400)=0x0) write$cgroup_pid(r1, &(0x7f0000000440)=r3, 0x12) ioctl$sock_ifreq(r0, 0x89bb, &(0x7f00000003c0)={'veth1_to_bond\x00', @ifru_names='team_slave_0\x00'}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0, 0x0}, &(0x7f00000002c0)=0xc) write$P9_RGETATTR(r1, &(0x7f0000000300)={0xa0, 0x19, 0x2, {0x2303, {0x0, 0x3, 0x6}, 0x0, r2, r4, 0xfffffffffffffffb, 0x9, 0x80000000, 0x1f, 0x4, 0x0, 0x3, 0x4, 0x97, 0xba9, 0x401, 0x7, 0x1, 0xfffffffffffffffa}}, 0xa0) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000100)={0x0, r1}) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/cache_bypass\x00', 0x2, 0x0) ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x14}) 04:52:42 executing program 1: r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x802) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x3ffffd}, &(0x7f0000000200)={0x0, 0x0, 0x80000000000000, 0x4000000000}, &(0x7f0000086000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0)={0x7}, 0x8}) removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)=ANY=[@ANYBLOB='uqer.\x00']) syz_open_dev$sndseq(&(0x7f0000000180)='/dev/snd/seq\x00', 0x0, 0x40) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) inotify_add_watch(r1, &(0x7f0000000140)='./file0/../file0\x00', 0x20000008) [ 152.826802] FAULT_INJECTION: forcing a failure. [ 152.826802] name failslab, interval 1, probability 0, space 0, times 0 [ 152.838126] CPU: 1 PID: 10060 Comm: syz-executor6 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 152.846535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 152.855888] Call Trace: [ 152.858486] dump_stack+0x1c9/0x2b4 [ 152.862112] ? dump_stack_print_info.cold.2+0x52/0x52 [ 152.867304] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 152.872400] ? debug_check_no_obj_freed+0x30b/0x595 [ 152.877427] should_fail.cold.4+0xa/0x11 [ 152.881484] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 152.886580] ? lock_acquire+0x1e4/0x540 [ 152.890548] ? ext4_discard_preallocations+0x985/0x13d0 [ 152.895899] ? kasan_check_read+0x11/0x20 [ 152.900042] ? do_raw_spin_unlock+0xa7/0x2f0 [ 152.904444] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 152.909282] ? kasan_check_write+0x14/0x20 [ 152.913498] ? do_raw_spin_lock+0xc1/0x200 [ 152.917722] ? ext4_discard_preallocations+0x18a/0x13d0 [ 152.923096] ? ext4_ext_index_trans_blocks+0x150/0x150 [ 152.928359] ? check_same_owner+0x340/0x340 [ 152.932662] ? rcu_note_context_switch+0x730/0x730 [ 152.937577] __should_failslab+0x124/0x180 [ 152.941796] should_failslab+0x9/0x14 [ 152.945592] __kmalloc+0x2c8/0x760 [ 152.949133] ? __es_remove_extent+0x9a3/0xba0 [ 152.953612] ? ext4_find_extent+0x775/0xa10 [ 152.957917] ext4_find_extent+0x775/0xa10 [ 152.962059] ? ext4_es_scan+0x970/0x970 [ 152.966061] ? __lock_acquire+0x3130/0x5020 [ 152.970394] ext4_ext_shift_extents+0xc9/0x1170 [ 152.975050] ? do_raw_write_trylock+0x1c0/0x1c0 [ 152.979725] ? kasan_check_write+0x14/0x20 [ 152.983963] ? ext4_ext_try_to_merge+0x5f0/0x5f0 [ 152.988703] ? ext4_es_remove_extent+0x12f/0x4e0 [ 152.993443] ? ext4_es_lookup_extent+0xde0/0xde0 [ 152.998192] ? down_write+0x8f/0x130 [ 153.001891] ? ext4_collapse_range+0xa83/0x1170 [ 153.006544] ? down_read+0x1d0/0x1d0 [ 153.010249] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 153.015774] ? ext4_writepage_trans_blocks+0x182/0x350 [ 153.021054] ext4_collapse_range+0xb02/0x1170 [ 153.025551] ? ext4_fiemap+0x1850/0x1850 [ 153.029595] ? pid_task+0x115/0x200 [ 153.033206] ? find_vpid+0xf0/0xf0 [ 153.036737] ? __f_unlock_pos+0x19/0x20 [ 153.040737] ext4_fallocate+0xce5/0x2330 [ 153.044810] ? __fget+0x4d5/0x740 [ 153.048262] ? ext4_insert_range+0x13d0/0x13d0 [ 153.052833] ? kasan_check_write+0x14/0x20 [ 153.057066] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 153.061999] ? fsnotify+0xbac/0x14e0 [ 153.065709] ? lock_acquire+0x1e4/0x540 [ 153.069667] ? vfs_fallocate+0x72a/0x940 [ 153.073712] ? fsnotify_first_mark+0x350/0x350 [ 153.078275] ? lock_release+0xa30/0xa30 [ 153.082253] ? check_same_owner+0x340/0x340 [ 153.086571] ? __fget_light+0x2f7/0x440 [ 153.090537] ? rcu_note_context_switch+0x730/0x730 [ 153.095458] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 153.100980] ? __sb_start_write+0x17f/0x300 [ 153.105285] ? ext4_insert_range+0x13d0/0x13d0 [ 153.109850] vfs_fallocate+0x4b4/0x940 [ 153.113722] ksys_fallocate+0x56/0x90 [ 153.117507] __x64_sys_fallocate+0x97/0xf0 [ 153.121725] do_syscall_64+0x1b9/0x820 [ 153.125594] ? finish_task_switch+0x1d3/0x870 [ 153.130083] ? syscall_return_slowpath+0x5e0/0x5e0 [ 153.134997] ? syscall_return_slowpath+0x31d/0x5e0 [ 153.139916] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 153.144930] ? prepare_exit_to_usermode+0x291/0x3b0 [ 153.149939] ? perf_trace_sys_enter+0xb10/0xb10 [ 153.154605] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 153.159440] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 153.164612] RIP: 0033:0x455e29 [ 153.167782] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 153.187262] RSP: 002b:00007efc2af98c68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 153.194966] RAX: ffffffffffffffda RBX: 00007efc2af996d4 RCX: 0000000000455e29 [ 153.202219] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000013 [ 153.209477] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 153.216735] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000014 [ 153.223992] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000002 04:52:43 executing program 6 (fault-call:2 fault-nth:3): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:43 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x8, 0x0, 0x10000) 04:52:43 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:43 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cfb(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="0b0775b005e381e5b3b60ced5c54dbb7", 0x10) r1 = accept$alg(r0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) sendmmsg$alg(r1, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x167, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) recvmsg(r1, &(0x7f00000006c0)={&(0x7f0000000040)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @ipv4={[], [], @remote}}}}, 0x80, &(0x7f0000000b80)=[{&(0x7f0000000480)=""/253, 0xfd}], 0x1, &(0x7f0000000300)=""/99, 0xfffffee3}, 0x0) 04:52:43 executing program 2: r0 = socket(0x10c, 0x6, 0x5) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000140)={0x84, @local={0xac, 0x14, 0x14, 0xaa}, 0x4e21, 0x6, "6e6f6e650000001000", 0x0, 0x0, 0x3a}, 0x2c) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000)) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000080)={@dev={0xac, 0x14, 0x14, 0x21}, @loopback=0x7f000001, 0x0, 0x7, [@multicast1=0xe0000001, @loopback=0x7f000001, @empty, @local={0xac, 0x14, 0x14, 0xaa}, @empty, @remote={0xac, 0x14, 0x14, 0xbb}, @broadcast=0xffffffff]}, 0x2c) 04:52:43 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000040)) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:43 executing program 4: socket$inet6(0xa, 0x3000000000002, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r3 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1004000000016) 04:52:43 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket(0x2, 0x2, 0x0) setsockopt$inet_int(r1, 0x0, 0xb, &(0x7f0000ab2000)=0x1002, 0x4) bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000000)=0x4ff9, 0x4) setsockopt$sock_int(r1, 0x1, 0x29, &(0x7f00000002c0)=0x73, 0x4) sendto$inet(r1, &(0x7f00004e9000), 0x289, 0x0, &(0x7f0000821ff0)={0x2, 0x4e20}, 0x10) recvmsg(r1, &(0x7f0000000740)={&(0x7f00000000c0)=@nl=@unspec, 0x80, &(0x7f0000000640), 0x0, &(0x7f00000006c0)=""/110, 0x6e}, 0x40012021) 04:52:43 executing program 2: syz_emit_ethernet(0x3e, &(0x7f0000000500)={@link_local={0x1, 0x80, 0xc2}, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv6={0x86dd, {0x0, 0x6, "093a06", 0x8, 0x2b, 0x0, @remote={0xfe, 0x80, [], 0xbb}, @mcast2={0xff, 0x2, [], 0x1}, {[], @udp={0xfffffff5, 0x0, 0x8}}}}}}, &(0x7f0000000100)) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000400)={0x0, @in6={{0xa, 0x4e24, 0x6, @mcast2={0xff, 0x2, [], 0x1}, 0x3}}}, &(0x7f00000004c0)=0x84) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000540)={r1, 0x80, "beddf00ac4de688823eff053fe54ac4682a5200587551aaf2c8edc2917fa58e1a01099274fadb67cf4164e68abad50d5eab2bc750809ba5ee50ae61db9760a9e2a236f436abbfca23e279f14bc639c2325db9de7cf5a458c0291515e735f5dffa3bea0a3965a598846f5c18812fa4fe8abe74cb3309e5e136197552f3842f9c6"}, &(0x7f0000000600)=0x88) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) getsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, &(0x7f0000000080)=0x7f, &(0x7f0000000100)=0x2) ioctl$fiemap(r2, 0x40086602, &(0x7f0000000080)=ANY=[]) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000140)={{{@in6=@mcast2, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in=@remote}}, &(0x7f0000000340)=0xe8) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000240)='/proc/self/net/pfkey\x00', 0x800, 0x0) ioctl$TUNGETFEATURES(r4, 0x800454cf, &(0x7f0000000380)) open(&(0x7f0000000300)='./file1\x00', 0x0, 0x10) ioctl$UFFDIO_WAKE(r4, 0x8010aa02, &(0x7f00000003c0)={&(0x7f0000ffb000/0x2000)=nil, 0x2000}) bind(r0, &(0x7f0000000280)=@xdp={0x2c, 0x3, r3, 0x19}, 0x80) fallocate(r0, 0x3, 0x0, 0x20001) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x30400, 0x0) 04:52:43 executing program 3: r0 = syz_open_dev$usbmon(&(0x7f0000000380)='/dev/usbmon#\x00', 0x6, 0x0) syncfs(r0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) mount(&(0x7f0000000200)='./file0\x00', &(0x7f00000003c0)='./file0\x00', &(0x7f0000000140)='tracefs\x00', 0x0, &(0x7f0000000440)="635dec1f93559561573e90495a42cf1a467649154f568abc6e541d15f386ab3f5a92fdd26ebc1d32d48ca78b39c531d52bda4283dfd156596bd40dc86a839488af5962070b6ce358ac1233b5b32a164913424544654c053e43f8c591b0fef7d48b81c92c5bf7687a19da57c0cff8b58df74b7a0bccef6394814f4d7d43648b0a47ba4de66a5601404b7bad7cb9454ca7fd") mount(&(0x7f0000000100)='./file0\x00', &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='qnx4\x00', 0x1001000, &(0x7f0000000340)="4b887e") r1 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) getdents(r1, &(0x7f0000000240)=""/93, 0x2fb) 04:52:43 executing program 0: fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8000011) fallocate(0xffffffffffffffff, 0x8, 0x0, 0x10000) 04:52:43 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:43 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(r1, 0x111, 0x1, 0x0, 0x4) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e21, 0x3, @local={0xfe, 0x80, [], 0xaa}, 0x4}}, [0x7ff, 0xffffffff, 0xa53, 0x8, 0x1000, 0x7d, 0x2cc3, 0x7fa, 0x10001, 0x1, 0x8, 0x80000000, 0xb82a, 0x7, 0x8000]}, &(0x7f0000000040)=0x100) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000100)={r2}, &(0x7f0000000300)=0x8) write$P9_RSTAT(r1, &(0x7f0000000180)={0x69, 0x7d, 0x1, {0x0, 0x62, 0x8, 0x5, {0xc, 0x2, 0x4}, 0x1000000, 0x1, 0xffffffffffffffbb, 0xfffffffffffffffe, 0xc, '/dev/uinput\x00', 0xd, '/dev/binder#\x00', 0xa, '/dev/ptmx\x00', 0xc, '/dev/uinput\x00'}}, 0x69) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:43 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet6(0xa, 0x40000000002, 0x88) r2 = dup2(r0, r1) getsockname$packet(r2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000140)=0x14) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000000)={0x0, 0xe8, "2fc0b6548add4bf7fa492164c0c2d56df0e781477d722caaf182b5b092f4628da192c86838ad18ca2a1ed2e1b5d305a1030e44e2cd88a86e90e50f24c85d1fee48f9f99d44b1f32ed756a0d60b9528c0071f21d04c4f4a33f4631b99251867047fa2059e3dae2371d3103c401f157f8d138d9efe18e45c5473488ca7f1df1089729494c20771d46ad774dde8a4e92f676c55eedfe426b6eceac499428569436fb4721c6de3b3a430819a5176bd76de6b00a18f7000a261ec676bae8a1ddc5b9c8681fb457f4960ad481b8fb38e4d1da993ce18d257c41ee21107edcd59f3c1d45dcbf152bd51bd08"}, &(0x7f00000001c0)=0xf0) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000200)={0x1, 0x7ff, 0x209, 0x6, 0x9, 0x6, 0x200, 0x6, r4}, 0x20) setsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f0000000180)={@remote={0xfe, 0x80, [], 0xbb}, r3}, 0x14) 04:52:43 executing program 0: fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8000011) fallocate(0xffffffffffffffff, 0x8, 0x0, 0x10000) 04:52:43 executing program 2: recvmsg$kcm(0xffffffffffffff9c, &(0x7f00000004c0)={&(0x7f00000001c0)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff}}, 0x80, &(0x7f0000000240)=[{&(0x7f0000000300)=""/161, 0xa1}], 0x1, &(0x7f00000003c0)=""/226, 0xe2, 0x4892}, 0x1) getsockopt$inet_mreq(r0, 0x0, 0x24, &(0x7f0000000500)={@multicast2, @remote}, &(0x7f0000000540)=0x8) r1 = socket$inet(0x2, 0x3, 0x2) recvmsg(r1, &(0x7f0000001780)={&(0x7f0000000280)=@xdp, 0x80, &(0x7f0000000700), 0x0, &(0x7f0000000780)=""/4096, 0x1000}, 0x0) r2 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x208000) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r2, &(0x7f0000000080)="4c02feb01833a5bf9f3e7da3c5bf412a9e5a6d758031f4f840314d49dd7d58fe968affc2bc36e21aaf2fa8f296d0f225b5277ef88d833b306f8d0f786fc67754c92d52521ca09da679645d9d6108e50f5a07b99ba114e4adb4a13b56be0d17f114636e97ae1ff985c2932eb938180f57957c86e01c251a56ee488c137eee8a257afa99a1693170fcd01b12ed648ad8a3513a64584b", &(0x7f0000000140)=""/53}, 0x18) setsockopt$inet_mreqn(r1, 0x0, 0x4, &(0x7f0000006ff4)={@empty, @loopback=0x7f000001}, 0xc) setsockopt$inet_int(r1, 0x0, 0x7, &(0x7f0000000000)=0x400, 0x4) bind$inet(r1, &(0x7f000000f000)={0x2, 0x3, @loopback=0x7f000001}, 0x10) sendto$inet(r1, &(0x7f0000004000), 0x33f, 0x0, &(0x7f0000002000)={0x2, 0x3}, 0x10) 04:52:43 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x4) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000280)="480000001400199009004b0101048c590a880900000000000000fe5f0028213ee20600d4ff5bffff00c7e5ed5e00000000c80000000000000000f5ffffffffffffff00eaf60d1812", 0x48}], 0x1) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffff9c, 0x84, 0x77, &(0x7f0000000040)={0x0, 0x101, 0x7, [0xceea, 0x7fffffff, 0xffffffffffffffe0, 0x1000, 0x2, 0x3f, 0x7]}, &(0x7f0000000080)=0x16) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000300)={r2, @in6={{0xa, 0x4e24, 0x800, @mcast1={0xff, 0x1, [], 0x1}, 0x7ff}}, 0x726, 0x40}, &(0x7f00000000c0)=0x90) 04:52:43 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = dup3(r0, r0, 0x80000) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000280)={0x6c, 0x0, &(0x7f0000000180)=[@acquire={0x40046305, 0x3}, @reply={0x40406301, {0x3, 0x0, 0x3, 0x0, 0x11, 0x0, 0x0, 0x0, 0x30, &(0x7f0000000040), &(0x7f0000000100)=[0x78, 0x68, 0x40, 0x38, 0x38, 0x38]}}, @clear_death={0x400c630f, 0x0, 0x3}, @clear_death={0x400c630f, 0x3}], 0x51, 0x0, &(0x7f0000000200)="76b6dcd344c644ef3616dcb6300730a93f7aef24bf7501637ea17a2d4ebd7341ff782e3f408515eeac24ee9d7e3d679ffa8d58a1c59155c4547962729676b5b25538311ec77670403d8d2b6f9714275715"}) r2 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$TIOCLINUX5(r1, 0x541c, &(0x7f0000000040)={0x5, 0x3f, 0x435, 0x8001, 0xfffffffffffffff8}) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) 04:52:44 executing program 0: fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8000011) fallocate(0xffffffffffffffff, 0x8, 0x0, 0x10000) 04:52:44 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000000)="025cc83d6d345f8f762070") timer_create(0x0, &(0x7f0000000180)={0x0, 0x38}, &(0x7f0000000140)) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) r1 = open(&(0x7f0000000040)='./file0\x00', 0x80, 0x164) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'ip6gretap0\x00', 0x0}) bind$can_raw(r1, &(0x7f00000000c0)={0x1d, r2}, 0x10) ppoll(&(0x7f0000000080), 0x0, &(0x7f0000000180)={0x77359400}, &(0x7f00000001c0), 0x8) 04:52:44 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xd00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:44 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:44 executing program 4: ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r3 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1004000000016) 04:52:44 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$sock_SIOCGIFBR(r1, 0x8940, &(0x7f0000000100)=@add_del={0x2, &(0x7f0000000040)='ipddp0\x00', 0x7}) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:44 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") unshare(0x48000000) r1 = socket$inet_tcp(0x2, 0x1, 0x0) accept4$inet6(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, @dev}, &(0x7f0000000180)=0x1c, 0x80000) socketpair$inet6_sctp(0xa, 0x5, 0x84, &(0x7f00000001c0)={0xffffffffffffffff}) r3 = fcntl$dupfd(r2, 0x406, r1) getsockopt$IPT_SO_GET_REVISION_MATCH(r3, 0x0, 0x42, &(0x7f00000000c0)={'ipvs\x00'}, &(0x7f0000000100)=0x1e) getsockopt$IPT_SO_GET_INFO(r1, 0x0, 0x40, &(0x7f00000002c0)={'mangle\x00'}, &(0x7f0000000340)=0x54) getsockopt$IPT_SO_GET_INFO(r3, 0x0, 0x40, &(0x7f0000000040)={'security\x00'}, &(0x7f0000000000)=0x54) 04:52:44 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0xfffffffffffffffc) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/uinput\x00', 0x400, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000600)={0xffffffff}, 0x13f, 0xf}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000680)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0x80, @local={0xfe, 0x80, [], 0xaa}, 0x7}, {0xa, 0x4e21, 0xfff, @remote={0xfe, 0x80, [], 0xbb}, 0xfff}, r2, 0x6}}, 0x48) syz_mount_image$hfs(&(0x7f0000000040)='hfs\x00', &(0x7f0000000080)='./file0\x00', 0xec, 0x3, &(0x7f0000000500)=[{&(0x7f00000000c0)="92b51a8856b7d622c9a7f41b8d00a0f8d0acbc37069988defef3619406f1a49f1043cf8100d75ff48364505581cf7bbbd0a37124736534752be6eaaf3bd288a37b206ca402ed7083ad5d077c903c84b4a0441b3e923a1f52ab58c1706194ace054b8c58bbaf51b543f1df0f3ed196732807853a3b0bff8b98fa0318a9fe8e17e639ad7ff58669681c2ce22ff5ca0a56b53ef8e9c415468cbd1110a7b32a91879efa415562207ffd98efa9015306955e57a649f2f78c570128dbaf5dac6d461810cd39a0058bfb3ce633dcdd82368cd5d37da6c828c73644865f74987c93728a0ed9c7ec52aa64231eec89e4c4c97897f93147e3baff56e89", 0xf8, 0x100000000}, {&(0x7f0000000000)="945f", 0x1, 0x3}, {&(0x7f00000003c0)="82df1b23799ddf8cce7d68d6fd5ec09181aeb1db384777ab96facf2b7a715585813d1a00a8c25541c2351f6c69d032a48086f6a1b3f52fd9bb746111c709c08dfd72dcab384ecdd78b2607b857338cce970ef55cabc97f7e7a54b4d60e37b8c5413cd5492a8f51d14aa35b943cf41361e61a3d3d9b62130bf82e00daea665545bc8d504abd44a881bde13d9cbe999134db2f44a2315098e69ca1386c1a9952fe55d1d3c6b115c3c8a89896ac27142db5010cf21e996c99c47200000ff5ef19393fe00d127b647adbe66970fc083ecf0dd51cd96fed081681fe73302a8fa36479acd48e75a8bb7167ee77c81f27fc29391ae883d8b40d27da81b91da74d02c2ebcc881ee63767b5afe0e531d500a3d829d54335c2bc39685bb4554d6b1ab28f43d8fb34dd36b2357b0fe61adddf8d85d8", 0x130}], 0x4000, &(0x7f0000000580)={[{@creator={'creator', 0x3d, "ae5d6f2e"}, 0x2c}]}) stat(&(0x7f0000000200)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000000240), &(0x7f0000000340)=0x0, &(0x7f0000000380)) lchown(&(0x7f00000001c0)='./file0\x00', r3, r4) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000700)='/dev/loop-control\x00', 0x4040, 0x0) 04:52:44 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) 04:52:44 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xf00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:44 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x0) fallocate(r0, 0x8, 0x0, 0x10000) 04:52:44 executing program 5: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x5, 0xfc, 0x7f, 0x800}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f000039afe0)={r0, &(0x7f000035b000), &(0x7f0000359f9e)}, 0x20) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000234000)={r0, &(0x7f000013a000), &(0x7f000039f8f7), 0x1}, 0x20) [ 154.478728] IPVS: ftp: loaded support on port[0] = 21 04:52:44 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) setsockopt$RDS_CONG_MONITOR(r1, 0x114, 0x6, &(0x7f0000000100), 0x4) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000040), &(0x7f0000000180)=0xffffffffffffffb6) [ 154.541699] device bridge_slave_1 left promiscuous mode [ 154.547223] bridge0: port 2(bridge_slave_1) entered disabled state [ 154.579138] device bridge_slave_0 left promiscuous mode [ 154.584685] bridge0: port 1(bridge_slave_0) entered disabled state 04:52:44 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xe001, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 154.602250] IPVS: ftp: loaded support on port[0] = 21 04:52:44 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(0xffffffffffffffff, 0x8, 0x0, 0x10000) 04:52:44 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) fcntl$getownex(r1, 0x10, &(0x7f00000001c0)={0x0, 0x0}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000200)=0x0) kcmp(r2, r3, 0x2, r0, r1) r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r4, 0x84, 0x13, &(0x7f0000000040)={0x0, 0xff}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000180)=@assoc_value={r5, 0x86}, 0x8) 04:52:44 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x0, 0x0, 0x10000) 04:52:44 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xc00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:45 executing program 5: sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) syz_open_pts(r0, 0x200000) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000080)=0x61) read(r0, &(0x7f0000000040)=""/11, 0xffed) r1 = syz_open_pts(r0, 0x101200) r2 = semget$private(0x0, 0x0, 0x141) semctl$SETVAL(r2, 0x1, 0x10, &(0x7f0000000000)=0x8) ioctl$TCXONC(r1, 0x540b, 0x0) 04:52:45 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000000180)={{0x7ff, 0x6}, 0x0, 0x80000001, 0x80000001, {0x20000000000, 0x800}, 0x6, 0x5}) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) r1 = getuid() ioctl$TUNSETOWNER(r0, 0x400454cc, r1) 04:52:45 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:45 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x0, 0x0, 0x10000) [ 155.395593] IPVS: ftp: loaded support on port[0] = 21 [ 155.577471] team0 (unregistering): Port device team_slave_1 removed [ 155.586562] team0 (unregistering): Port device team_slave_0 removed [ 155.595499] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 155.611319] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 155.633480] bond0 (unregistering): Released all slaves [ 156.454293] bridge0: port 1(bridge_slave_0) entered blocking state [ 156.460690] bridge0: port 1(bridge_slave_0) entered disabled state [ 156.476711] device bridge_slave_0 entered promiscuous mode [ 156.525042] bridge0: port 2(bridge_slave_1) entered blocking state [ 156.531473] bridge0: port 2(bridge_slave_1) entered disabled state [ 156.539160] device bridge_slave_1 entered promiscuous mode [ 156.570502] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 156.607305] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready 04:52:46 executing program 3: r0 = accept4(0xffffffffffffff9c, &(0x7f0000000100)=@ethernet={0x0, @remote}, &(0x7f0000000180)=0x80, 0x80000) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f0000000300)={&(0x7f00000001c0)={0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x64, r1, 0x508, 0x70bd29, 0x25dfdbfe, {0xc}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x44f1c85a}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x7f}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xffff}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wlc\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000040}, 0x40090) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x4000, 0x0) connect$pppoe(r4, &(0x7f0000000040)={0x18, 0x0, {0x2, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], 'bond_slave_1\x00'}}, 0x1e) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f00000000c0)) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) dup3(r2, r3, 0x0) getsockopt$inet_mreqn(r0, 0x0, 0x0, &(0x7f0000000340)={@local, @rand_addr}, &(0x7f0000000380)=0xc) [ 156.688546] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 156.718281] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 156.752458] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 156.759430] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 156.846811] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 156.853842] team0: Port device team_slave_0 added [ 156.874279] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 156.881607] team0: Port device team_slave_1 added [ 156.903384] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 156.926286] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 156.948710] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 156.955751] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 156.963932] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 156.981680] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 156.988883] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 156.998563] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 157.173014] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.179413] bridge0: port 2(bridge_slave_1) entered forwarding state [ 157.186032] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.192468] bridge0: port 1(bridge_slave_0) entered forwarding state [ 157.199711] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 157.727131] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 157.822167] 8021q: adding VLAN 0 to HW filter on device bond0 [ 157.884920] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 157.947662] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 157.953885] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 157.961130] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 158.019912] 8021q: adding VLAN 0 to HW filter on device team0 04:52:48 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x80, 0x0) setsockopt$inet_MCAST_LEAVE_GROUP(r2, 0x0, 0x2d, &(0x7f0000000200)={0x5, {{0x2, 0x4e22, @loopback=0x7f000001}}}, 0x88) r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r3, 0x0, 0x61, &(0x7f0000000180)={'filter\x00', 0x4}, 0x68) ioctl$VT_RELDISP(r0, 0x5605) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:52:48 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xc005, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:48 executing program 4: ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r3 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1004000000016) 04:52:48 executing program 5: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x24000, 0x0) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000200)={0x0, 0x1}, &(0x7f0000000240)=0x8) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000280)=@assoc_id=r1, &(0x7f00000002c0)=0x4) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000040)=0x9, 0x4) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x40000, 0x0) mmap(&(0x7f0000a91000/0x2000)=nil, 0x2000, 0x5, 0x8031, 0xffffffffffffffff, 0x0) fcntl$getownex(r2, 0x10, &(0x7f0000000180)) umount2(&(0x7f0000000340)='./file0\x00', 0x9) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000001c0)={'ipddp0\x00', 0x200}) getdents64(r4, &(0x7f0000000440)=""/11, 0x51c) 04:52:48 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x0, 0x0, 0x10000) 04:52:48 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:48 executing program 3: r0 = socket$inet_dccp(0x2, 0x6, 0x0) setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xee9, 0x80000) sendto$inet6(r1, &(0x7f0000000040)="349bd94f330ea0f074d79bce471234aeecbfd513ab495be6441a0968f07b1d6b5b19a3af19761dce4c32fc387ea99fa6f598a5b18dac840fcec299f37aeb83a8cc3331e255469b9f30f637d6ed752a11294eb555b683d80716cb29a814570f4dc62421913c5081aa99f4ac14cbe7ed7c283c6392ed1953e1310f12abe103fc488d09d143633e506c812a0f3972071aab1fc72dade2b99ccda5f049db5730fd35cd699b55c6e82bc789f9e0", 0xab, 0x0, &(0x7f0000000100)={0xa, 0x4e20, 0x1, @local={0xfe, 0x80, [], 0xaa}, 0x6a}, 0x1c) setsockopt(r0, 0x800000010d, 0x2, &(0x7f000045affc), 0x3cb) 04:52:48 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mkdir(&(0x7f00000013c0)='./file0\x00', 0x0) mount(&(0x7f0000001440)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f00000012c0)='proc\x00', 0x0, &(0x7f0000000100)) r1 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r2 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x81, 0x201) ioctl$UFFDIO_WAKE(r2, 0x8010aa02, &(0x7f0000000080)={&(0x7f000024e000/0x1000)=nil, 0x1000}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) fstat(r1, &(0x7f0000000100)) [ 158.380374] hfs: can't find a HFS filesystem on dev loop2 04:52:48 executing program 1: r0 = syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x0, 0x40) ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f0000000200)={0x3, 0x60000000000, 0x9}) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x4) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$EVIOCGEFFECTS(r1, 0x80044584, &(0x7f0000000180)=""/75) pselect6(0x40, &(0x7f0000f33fc0)={0x3fffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, &(0x7f0000768000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, &(0x7f0000086000)={0x0, 0x0, 0x400000}, &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0)={0xfffffffffffffffc}, 0x38d}) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000340), &(0x7f0000000380)=0x4) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r2, 0xc058534b, &(0x7f00000002c0)={0x100000000, 0x3, 0xae6, 0x100000001, 0x2, 0x1}) openat(r2, &(0x7f0000000040)='./file0\x00', 0x0, 0x2) write$cgroup_type(r0, &(0x7f0000000240)='threaded\x00', 0x9) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) ioctl$BLKBSZSET(r0, 0x40081271, &(0x7f0000000280)=0x9) 04:52:48 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x4003, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:48 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x0) 04:52:48 executing program 3: r0 = socket$inet(0x2, 0x3, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x60, 0x2, 0x2b0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000600], 0x2, &(0x7f0000000240), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000001500000000000000000062637366300000000000000000000000626f6e645f736c6176655f310000000079616d300000000000000000000000007465616d5f736c6176655f30000000000180c2000000000000000000aaaaaaaaaa000000000000000000b5000000300100008001000073746174697374696300000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000415544495db3818d000000000000000000000000000000000000000000000000080000000000000000000000000000004c45440000000000000000000000000000000000000000000000000000000000280000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000049444c4554494d4552000000000000000000000000000000000000000000000028000000000000000700000073797a3000000000000000000000000000000000000000000000000000000000000000001500000000000000000076657468305f746f5f627269646765006970646470300000000000000000000073797a5f74756e000000000000000000726f736530000000000000000000000060f9a9d474aa000000000000ffffffffffff00000000000000007000000070000000a00000004e465155455545000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000feffffff00000000d0eab830ab5f5d79b458163bb7f49add65b4f1a89c2b6f603b8bfc354766516b92f90b62e403b3a53cef841d0b7e6f5a6f96f7b950262d24e162be0661bef68ab6f62beafaa6830291442d37eff67f73a87b09ca587eb54ea6499eba4e9b496565bb42ab7d3dfd89b5d21e36f18223a5da5ba0f8d23e89d8e4f460fbae473c5b6c5aa2ef67f837014fcb0e2a0f95ec4bfe17c00db3c21f45f0668e8433fac8a65d590cd06be93c0324f01fdd614571465114cfcb6ff92abdff9435993c2da618790e"]}, 0x3ea) socket$xdp(0x2c, 0x3, 0x0) 04:52:48 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") r1 = socket$inet(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f0000eed000)={0x2, 0x1}, 0x10) sendto$inet(r1, &(0x7f0000000180)="33c3482cb27f4ac6473008bcb0039504723a08d7c630e4b71ddac965e407f4143da01ee787d09c30e0ccf276fd874403feee4642650390e5c815817ef0caf26e561a862410a9d20f2fb36ae79f058bbd80a6710d5b653fe07059b98cf03708a77c7e79e31f42420bd0fa4371e2dbb2873a2b007e322b8f096ee088c06d6027c37d3869e1983b9cba046756c300f64f2630fb064150bf0bf8aad8b6bbba107ebdc3116f7e796d8b90c882a55dc4cb3c73efaaf6b8edb068bcad8b10d3843dccc7df268e7152e495962c585082", 0xcc, 0x4000881, &(0x7f0000000040)={0x2, 0x4e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) syz_emit_ethernet(0x423, &(0x7f0000000cc0)={@link_local={0x1, 0x80, 0xc2}, @empty=[0x0, 0x0, 0x14], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x415, 0x0, 0x0, 0x0, 0x200000000000011, 0x0, @rand_addr, @multicast1=0xe0000001}, @dccp={{0x0, 0x1, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "d70502", 0x0, "f53475"}, "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"}}}}}, 0x0) sendto$inet(r1, &(0x7f000029b000), 0x287, 0x0, &(0x7f0000778000)={0x2, 0x1, @loopback=0x7f000001}, 0x10) recvfrom$inet(r1, &(0x7f00000000c0)=""/186, 0x3f9, 0x0, &(0x7f0000000000)={0x2, 0x0, @rand_addr}, 0x708000) 04:52:48 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") sync_file_range(r0, 0x3, 0x1, 0x3) socketpair(0x18, 0x0, 0x10000002, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_inet_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000040)) openat$cgroup_ro(r1, &(0x7f0000000000)='cpuset.effective_cpus\x00', 0x0, 0x0) [ 158.513496] proc: unrecognized mount option "" or missing value 04:52:48 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'team_slave_0\x00'}) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000300)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40480000}, 0xc, &(0x7f0000000640)={&(0x7f00000010c0)=ANY=[@ANYBLOB="180048d03fa1100000000400260000000000000000000000"], 0x18}, 0x1}, 0x0) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x800, 0x0) r3 = syz_open_dev$audion(&(0x7f0000000340)='/dev/audio#\x00', 0x1f, 0x2000) setsockopt$IP_VS_SO_SET_EDIT(r3, 0x0, 0x483, &(0x7f0000000380)={0x0, @broadcast=0xffffffff, 0x4e20, 0x0, 'none\x00', 0x1d, 0xffffffffffffffcb, 0x15}, 0x2c) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/net/pfkey\x00', 0x4000, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000300)={'ip6gre0\x00', 0x8000}) socketpair(0x8, 0x3, 0x2, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) openat$audio(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/audio\x00', 0x80042, 0x0) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x480}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, r6, 0x100, 0x70bd29, 0x25dfdbfb, {0xe}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x401}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x20}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x40000) dup(r0) creat(&(0x7f00000000c0)='./file0\x00', 0x88) r7 = memfd_create(&(0x7f0000000040)='}\\selinux^\x00', 0x1) ioctl$SIOCGIFHWADDR(r7, 0x8927, &(0x7f0000000080)) 04:52:48 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x10000, 0x0) getsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000100), 0x2) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) [ 158.601641] binder: 10536:10544 ioctl 80044584 20000180 returned -22 [ 158.627602] binder: 10536:10544 ioctl 80044584 20000180 returned -22 04:52:48 executing program 2: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) r2 = socket$can_raw(0x1d, 0x3, 0x1) listen(r2, 0x1) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @loopback=0x7f000002}, 0x10) getsockopt$inet_int(r1, 0x10d, 0x85, &(0x7f0000000080), &(0x7f0000000180)=0x8) 04:52:48 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xa006, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:49 executing program 4: ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r3 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r3, 0x1004000000016) 04:52:49 executing program 0 (fault-call:2 fault-nth:0): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) 04:52:49 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet6_buf(r1, 0x29, 0x8000000039, &(0x7f00000000c0)="d1020400005800200007000613f32e1c00ce5fe1b471985e", 0x18) sendto$inet6(r1, &(0x7f00000001c0)='a', 0x1, 0x0, &(0x7f0000aa9000)={0xa, 0x4e24, 0x0, @remote={0xfe, 0x80, [], 0xffffffffffffffff}, 0x2}, 0x1c) listen(r1, 0x5) r2 = accept(r0, &(0x7f00000002c0)=@can, &(0x7f0000000080)=0x80) syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000140)='./file0\x00', 0x1, 0x3, &(0x7f0000000500)=[{&(0x7f0000000340)="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", 0xfa, 0x5}, {&(0x7f0000000200)="b518339c080cf206638169bad0a12a19f49101ea0ab8524bf5fa41e57d34de816a6e475a429fb9936a4d0cd5933f1e99b1332735c92a92724ca0ae941aae10c189352f66b61096535cee834b69ef8b88ad3f1c75d08cfa323202c135a7747e74887f23748ca3d18e1b796bb8fb8b2015aefc", 0x72, 0x3}, {&(0x7f0000000440)="067a77f57f01598d088462f43e321f44d616f505e4478e6c9a6f52db5a05999ae3d4a8599cb4842414a33bfa7f12088ba14ecf7f250c08f8d899e4c16f8993cb2615d2e25c6568867adc452b3552492f2491332b4d1cd9c27f41ae5a0d7f5b7e52cd5e83cb326570476f37c0a4ea5475127d32a7922396d043b5ac15a9b5043d99dea66e827597ab8dd68a1732a8e420bc25fdea2c749431edacf0b4be69a5990ca76535bf6f68f2a586a3025470c62797f3a62bc7bf6f8f", 0xb8, 0x7}], 0x2000, &(0x7f0000000180)=ANY=[@ANYBLOB="f1c7695f786c6174653d312c73686f72746e616d653d77696e6e742c757466383d312c756e695f786c6174653d312c6e6e6f6e756d7461696c3d312c00"]) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f0000000100)=0x101, 0x4) setsockopt$inet_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000000)=0x3, 0x4) 04:52:49 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/mixer\x00', 0x400, 0x0) getsockname$unix(r0, &(0x7f00000000c0), &(0x7f0000000140)=0x6e) fstat(r0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fanotify_mark(r0, 0xc4, 0x8000, r0, &(0x7f0000000080)='./file1\x00') ioctl$TUNGETSNDBUF(r0, 0x800454d3, &(0x7f0000000180)) clone(0x800, &(0x7f00000001c0)="ec4755b966859ac45f5af4042eb95c1286a16b1431d7c93ae924fa30abfb52aa1a6c93972cbad4e6cbaf9dacd5a83cf612ce85eccd484f480b3a5b5884a63a9978", &(0x7f0000000240), &(0x7f0000000280), &(0x7f0000000380)="d0862338c3734fec91d0955fa9bb841e1a891b992cbb5ef293f2703fe7c894a1cfc098307580a4b86049b74834fd9229348971b71f149a0855a6187f8229c9e4134d21f936b7b93e888864a72bb3e6d60a39f43a8d6f4d6c3f386087211178aad0bc17b711c608de94b6d96668a9da565e0f8a21692378dc22f3d52905220f566cc8005ff5eb10676894463251976daf2c5e2c71964a1c86d4d949bfb21a3421dfaf53682ee0f045b2f5465783") setregid(0x0, r1) keyctl$session_to_parent(0x12) 04:52:49 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) ioctl$TIOCLINUX2(r0, 0x541c, &(0x7f0000000040)={0x2, 0x0, 0x1f, 0x7ce, 0x0, 0x10001}) 04:52:49 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(twofish)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00001ec000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10) prctl$setfpexc(0xc, 0x81) r1 = accept$alg(r0, 0x0, 0x0) io_setup(0x1, &(0x7f0000000300)=0x0) epoll_create(0x0) io_submit(r2, 0x1, &(0x7f0000738000)=[&(0x7f0000f73fc0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f000079a000)="16", 0x1}]) getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffff9c, 0x84, 0x10, &(0x7f0000000000)=@assoc_value={0x0, 0x6}, &(0x7f00000000c0)=0x8) r4 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000180)='/dev/cuse\x00', 0x80001, 0x0) ioctl$RTC_PLL_SET(r4, 0x40207012, &(0x7f00000001c0)={0xfa, 0x7, 0x2, 0x5, 0xfffffffffffff001, 0x5}) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000200)={r3, @in={{0x2, 0x4e24, @multicast1=0xe0000001}}, 0xd15, 0x1, 0x7, 0x9, 0x4}, &(0x7f00000002c0)=0x98) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000100)={r3, 0x0, 0x10}, &(0x7f0000000140)=0xc) 04:52:49 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x4100, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:49 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:49 executing program 1: r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:49 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1500, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 159.316898] FAULT_INJECTION: forcing a failure. [ 159.316898] name failslab, interval 1, probability 0, space 0, times 0 [ 159.328246] CPU: 1 PID: 10598 Comm: syz-executor0 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 159.336651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 159.346009] Call Trace: [ 159.348615] dump_stack+0x1c9/0x2b4 [ 159.352258] ? dump_stack_print_info.cold.2+0x52/0x52 [ 159.357467] should_fail.cold.4+0xa/0x11 [ 159.361539] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 159.366651] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 159.371739] ? filemap_map_pages+0xca2/0x1990 [ 159.376258] ? trace_hardirqs_on+0x10/0x10 [ 159.380761] ? trace_hardirqs_on+0x10/0x10 [ 159.385005] ? write_comp_data+0x22/0x70 [ 159.389082] ? trace_hardirqs_on+0x10/0x10 [ 159.393327] ? trace_hardirqs_on+0x10/0x10 [ 159.397561] ? find_get_entries_tag+0x1410/0x1410 [ 159.402398] ? check_same_owner+0x340/0x340 [ 159.406716] ? unmap_mapping_pages+0x1fe/0x5b0 [ 159.411289] ? rcu_note_context_switch+0x730/0x730 [ 159.416209] __should_failslab+0x124/0x180 [ 159.420430] should_failslab+0x9/0x14 [ 159.424218] kmem_cache_alloc+0x2af/0x760 [ 159.428354] jbd2__journal_start+0x1e7/0xa80 [ 159.432759] ? jbd2_write_access_granted.part.9+0x430/0x430 [ 159.438466] ? rcu_note_context_switch+0x730/0x730 [ 159.443398] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 159.448931] __ext4_journal_start_sb+0x182/0x600 [ 159.453689] ? ext4_collapse_range+0x97e/0x1170 [ 159.458341] ? ext4_journal_abort_handle.isra.5+0x260/0x260 [ 159.464048] ? ext4_ext_index_trans_blocks+0x11f/0x150 [ 159.469310] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 159.474831] ? ext4_meta_trans_blocks+0x25f/0x310 [ 159.479663] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 159.485203] ? ext4_writepage_trans_blocks+0x182/0x350 [ 159.490465] ext4_collapse_range+0x97e/0x1170 [ 159.494952] ? ext4_fiemap+0x1850/0x1850 [ 159.499000] ? pid_task+0x115/0x200 [ 159.502616] ? find_vpid+0xf0/0xf0 [ 159.506145] ? __f_unlock_pos+0x19/0x20 [ 159.510108] ext4_fallocate+0xce5/0x2330 [ 159.514156] ? __fget+0x4d5/0x740 [ 159.517595] ? ext4_insert_range+0x13d0/0x13d0 [ 159.522163] ? kasan_check_write+0x14/0x20 [ 159.526381] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 159.531289] ? fsnotify+0xbac/0x14e0 [ 159.534990] ? lock_acquire+0x1e4/0x540 [ 159.538951] ? vfs_fallocate+0x72a/0x940 [ 159.542996] ? fsnotify_first_mark+0x350/0x350 [ 159.547574] ? lock_release+0xa30/0xa30 [ 159.551537] ? check_same_owner+0x340/0x340 [ 159.555871] ? __fget_light+0x2f7/0x440 [ 159.559829] ? rcu_note_context_switch+0x730/0x730 [ 159.564759] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 159.570281] ? __sb_start_write+0x17f/0x300 [ 159.574586] ? ext4_insert_range+0x13d0/0x13d0 [ 159.579166] vfs_fallocate+0x4b4/0x940 [ 159.583051] ksys_fallocate+0x56/0x90 [ 159.586841] __x64_sys_fallocate+0x97/0xf0 [ 159.591078] do_syscall_64+0x1b9/0x820 [ 159.594964] ? finish_task_switch+0x1d3/0x870 [ 159.599448] ? syscall_return_slowpath+0x5e0/0x5e0 [ 159.604363] ? syscall_return_slowpath+0x31d/0x5e0 [ 159.609277] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 159.614275] ? prepare_exit_to_usermode+0x291/0x3b0 [ 159.619276] ? perf_trace_sys_enter+0xb10/0xb10 [ 159.623931] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 159.628764] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 159.633940] RIP: 0033:0x455e29 [ 159.637108] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 159.656294] RSP: 002b:00007f784a7c7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d 04:52:49 executing program 5: r0 = socket(0x1d, 0xf, 0xfffff7dfffffffff) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x8000, 0x0) ioctl$KDMKTONE(r1, 0x4b30, 0x2) poll(&(0x7f0000000100)=[{r0, 0x10}, {r0, 0x201}, {r0, 0x4}, {r0, 0x6000}], 0x4, 0x5) ioctl$sock_ifreq(r0, 0x8948, &(0x7f0000000080)={'ip\x00', @ifru_map={0x4, 0xffffffff, 0x0, 0x8, 0x5, 0x1fffc}}) sendto$inet(r0, &(0x7f0000000000)="ac01000000000000000100a22f8cca1bbd01000000000c002388d7000007668098fc23471cf423070b00000000000000", 0x30, 0x0, &(0x7f0000000340)={0x2}, 0x10) 04:52:49 executing program 2: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x100, 0x0) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r0, 0x111, 0x3, 0x0, 0x4) r1 = gettid() setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, &(0x7f0000c29ffc), 0x4) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f0000000040)=""/247, 0xffffff50}], 0x1000000000000005, &(0x7f0000000180)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) r2 = socket$xdp(0x2c, 0x3, 0x0) mmap$xdp(&(0x7f0000344000/0x1000)=nil, 0x1000, 0x2000000, 0x20010, r2, 0x0) pkey_mprotect(&(0x7f000054b000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000240)='/dev/rtc0\x00', 0x200, 0x0) getsockopt$EBT_SO_GET_ENTRIES(r3, 0x0, 0x81, &(0x7f00000003c0)={'broute\x00', 0x0, 0x3, 0x60, [], 0x9, &(0x7f0000000280)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000340)=""/96}, &(0x7f0000000440)=0x78) madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x8) [ 159.663998] RAX: ffffffffffffffda RBX: 00007f784a7c86d4 RCX: 0000000000455e29 [ 159.671256] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000013 [ 159.678682] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 159.685941] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000014 [ 159.693193] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000000 04:52:49 executing program 0 (fault-call:2 fault-nth:1): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) 04:52:49 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x802) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) fsetxattr(r0, &(0x7f0000000180)=@known='security.capability\x00', &(0x7f00000001c0)='\x00', 0x1, 0x3) ioctl$TIOCLINUX4(r1, 0x541c, &(0x7f0000000100)=0x4) 04:52:49 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e24, 0x3c, @dev={0xfe, 0x80, [], 0xe}, 0x8}, 0x1c) setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000000)=ANY=[@ANYBLOB="0100040000520000"], 0x8) 04:52:49 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8007, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 159.877724] FAULT_INJECTION: forcing a failure. [ 159.877724] name failslab, interval 1, probability 0, space 0, times 0 [ 159.889110] CPU: 1 PID: 10633 Comm: syz-executor0 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 159.897516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 159.906961] Call Trace: [ 159.909553] dump_stack+0x1c9/0x2b4 [ 159.913192] ? dump_stack_print_info.cold.2+0x52/0x52 [ 159.918390] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 159.923425] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 159.928178] should_fail.cold.4+0xa/0x11 [ 159.932240] ? lock_acquire+0x1e4/0x540 [ 159.936223] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 159.941343] ? lock_release+0xa30/0xa30 [ 159.945335] ? kasan_check_read+0x11/0x20 [ 159.949480] ? rcu_is_watching+0x8c/0x150 [ 159.953614] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 159.958270] ? is_bpf_text_address+0xd7/0x170 [ 159.962754] ? kernel_text_address+0x79/0xf0 [ 159.967145] ? __kernel_text_address+0xd/0x40 [ 159.971622] ? unwind_get_return_address+0x61/0xa0 [ 159.976541] ? __save_stack_trace+0x8d/0xf0 [ 159.980862] ? jbd2__journal_start+0x162/0xa80 [ 159.985432] ? check_same_owner+0x340/0x340 [ 159.989739] ? rcu_note_context_switch+0x730/0x730 [ 159.994658] ? save_stack+0xa9/0xd0 [ 159.998275] ? rcu_note_context_switch+0x730/0x730 [ 160.003191] __should_failslab+0x124/0x180 [ 160.007422] should_failslab+0x9/0x14 [ 160.011221] __kmalloc+0x2c8/0x760 [ 160.014751] ? __ext4_journal_start_sb+0x18a/0x600 [ 160.019676] ? do_raw_spin_unlock+0xa7/0x2f0 [ 160.024074] ? ext4_ext_remove_space+0x294/0x4bb0 [ 160.028901] ? ext4_journal_abort_handle.isra.5+0x260/0x260 [ 160.034602] ? ext4_find_extent+0x775/0xa10 [ 160.039387] ext4_find_extent+0x775/0xa10 [ 160.043531] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 160.048620] ext4_ext_remove_space+0x1816/0x4bb0 [ 160.053369] ? __kasan_slab_free+0x131/0x170 [ 160.057762] ? trace_hardirqs_on+0xd/0x10 [ 160.061897] ? ext4_ext_index_trans_blocks+0x150/0x150 [ 160.067163] ? ext4_es_can_be_merged+0x2a0/0x2a0 [ 160.071929] ? ext4_exit_mballoc+0xc0/0xc0 [ 160.076162] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 160.081189] ? __es_tree_search.isra.13+0x1ba/0x220 [ 160.086192] ? __es_remove_extent+0x9a3/0xba0 [ 160.090679] ? ext4_es_remove_extent+0x12a/0x4e0 [ 160.095429] ? lock_downgrade+0x8f0/0x8f0 [ 160.099569] ? ext4_es_scan+0x970/0x970 [ 160.103542] ? lock_release+0xa30/0xa30 [ 160.107509] ? ext4_collapse_range+0xa83/0x1170 [ 160.112185] ? do_raw_write_trylock+0x1c0/0x1c0 [ 160.116863] ? kasan_check_write+0x14/0x20 [ 160.121089] ? _raw_write_unlock+0x22/0x30 [ 160.125315] ? ext4_es_remove_extent+0x12f/0x4e0 [ 160.130059] ? ext4_es_lookup_extent+0xde0/0xde0 [ 160.134800] ? down_write+0x8f/0x130 [ 160.138497] ? ext4_collapse_range+0xa83/0x1170 [ 160.143158] ? down_read+0x1d0/0x1d0 [ 160.146868] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 160.152395] ? ext4_writepage_trans_blocks+0x182/0x350 [ 160.157661] ext4_collapse_range+0xac8/0x1170 [ 160.162146] ? ext4_fiemap+0x1850/0x1850 [ 160.166195] ? pid_task+0x115/0x200 [ 160.169804] ? find_vpid+0xf0/0xf0 [ 160.173328] ? __f_unlock_pos+0x19/0x20 [ 160.177292] ext4_fallocate+0xce5/0x2330 [ 160.181333] ? __fget+0x4d5/0x740 [ 160.184767] ? ext4_insert_range+0x13d0/0x13d0 [ 160.189345] ? kasan_check_write+0x14/0x20 [ 160.193678] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 160.198608] ? fsnotify+0xbac/0x14e0 [ 160.202338] ? lock_acquire+0x1e4/0x540 [ 160.206312] ? vfs_fallocate+0x72a/0x940 [ 160.210373] ? fsnotify_first_mark+0x350/0x350 [ 160.214956] ? lock_release+0xa30/0xa30 [ 160.218926] ? check_same_owner+0x340/0x340 [ 160.223239] ? __fget_light+0x2f7/0x440 [ 160.227208] ? rcu_note_context_switch+0x730/0x730 [ 160.232136] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 160.237664] ? __sb_start_write+0x17f/0x300 [ 160.241973] ? ext4_insert_range+0x13d0/0x13d0 [ 160.246546] vfs_fallocate+0x4b4/0x940 [ 160.250418] ksys_fallocate+0x56/0x90 [ 160.254202] __x64_sys_fallocate+0x97/0xf0 [ 160.258421] do_syscall_64+0x1b9/0x820 [ 160.262300] ? syscall_return_slowpath+0x5e0/0x5e0 [ 160.267211] ? syscall_return_slowpath+0x31d/0x5e0 [ 160.272121] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 160.277122] ? prepare_exit_to_usermode+0x291/0x3b0 [ 160.282124] ? perf_trace_sys_enter+0xb10/0xb10 [ 160.286777] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 160.291607] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 160.296786] RIP: 0033:0x455e29 [ 160.299956] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 160.319125] RSP: 002b:00007f784a7c7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d 04:52:50 executing program 4: r0 = socket$inet6(0xa, 0x0, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:50 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) fstat(r0, &(0x7f0000000100)) r1 = syz_open_dev$ndb(&(0x7f0000000040)='/dev/nbd#\x00', 0xffffffffffffffff, 0x0) read(r1, &(0x7f0000000080)=""/101, 0x65) ioctl$IOC_PR_CLEAR(r1, 0x401070cd, &(0x7f0000000200)={0x24}) [ 160.326824] RAX: ffffffffffffffda RBX: 00007f784a7c86d4 RCX: 0000000000455e29 [ 160.334077] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000013 [ 160.341338] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 160.348588] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000014 [ 160.355846] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000001 04:52:50 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x3e5cbe48, 0xfffffffffffffffd) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl(r1, 0x3, &(0x7f0000000200)="22af7a2b40302bf56a8ce57daf2d8ca0a37e90d054a8483ed9f4474fb276069b81d656a6298d5894327c68f6a1b22f33f96b01d1c70bab18ae6a4c046de710b81f432e916362a32699836fa9256646e49df03bfe115f75df6c688a32b95388d48d744e2d91aa497e57c22295e23139287ead5ff035064b8fdd1d0f5929f84d6a154a15f66ffdd10ca59bd911dfcec3690072966c2218b9b1") ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f00000002c0)=""/187) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000080)={{{@in6=@mcast2, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@multicast2}}, &(0x7f0000000180)=0xe8) ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f00000001c0)={r2, 0xe7e7, 0x9, 0x5, 0x20, 0x4, 0x5}) ioctl$SG_SCSI_RESET(r0, 0x2284, 0x7fffffffefff) 04:52:50 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) write(r1, &(0x7f0000000040)="c8b3e46f5f6528e04d9b0650db7291", 0xf) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:50 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:50 executing program 0 (fault-call:2 fault-nth:2): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) 04:52:50 executing program 2: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x1f00000000000000, 0xd2, &(0x7f0000000000), 0x3c) socket$inet(0x2, 0x5, 0x5) 04:52:50 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) unshare(0x8000400) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f000068b000)='io\x00') r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000002040)='/dev/qat_adf_ctl\x00', 0x220900, 0x0) getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r2, 0x84, 0x74, &(0x7f0000001040)=""/4096, &(0x7f0000001000)=0xecd) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'morus1280-sse2\x00'}, 0x58) r3 = accept4$alg(r0, 0x0, 0x0, 0x0) sendfile(r3, r1, &(0x7f0000a2effc), 0x6) 04:52:50 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = accept4$inet6(0xffffffffffffff9c, &(0x7f0000000040)={0x0, 0x0, 0x0, @mcast1}, &(0x7f0000000100)=0x6, 0x0) setsockopt$inet6_MRT6_DEL_MFC(r1, 0x29, 0xcd, &(0x7f0000000180)={{0xa, 0x4e23, 0x1, @mcast1={0xff, 0x1, [], 0x1}, 0x6}, {0xa, 0x4e20, 0x6, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}, 0x3ff}, 0x7, [0x8003, 0x1f, 0x800, 0x3, 0x4, 0x3]}, 0x5c) syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x101006, 0x0) ioctl$KDGKBENT(r0, 0x4b46, &(0x7f0000000200)={0x506b6603, 0x3, 0x7}) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) getsockopt$inet_opts(r2, 0x0, 0x9, &(0x7f0000000240)=""/122, &(0x7f00000002c0)=0x7a) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) [ 160.560927] FAULT_INJECTION: forcing a failure. [ 160.560927] name failslab, interval 1, probability 0, space 0, times 0 [ 160.575650] CPU: 0 PID: 10671 Comm: syz-executor0 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 160.584054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 160.593403] Call Trace: [ 160.596012] dump_stack+0x1c9/0x2b4 [ 160.599640] ? dump_stack_print_info.cold.2+0x52/0x52 [ 160.604838] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 160.609931] ? debug_check_no_obj_freed+0x30b/0x595 [ 160.614933] should_fail.cold.4+0xa/0x11 [ 160.618980] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 160.624072] ? lock_acquire+0x1e4/0x540 [ 160.628033] ? ext4_discard_preallocations+0x985/0x13d0 [ 160.633385] ? kasan_check_read+0x11/0x20 [ 160.637512] ? do_raw_spin_unlock+0xa7/0x2f0 [ 160.641904] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 160.646471] ? kasan_check_write+0x14/0x20 [ 160.650691] ? do_raw_spin_lock+0xc1/0x200 [ 160.654910] ? ext4_discard_preallocations+0x18a/0x13d0 [ 160.660705] ? ext4_ext_index_trans_blocks+0x150/0x150 [ 160.665967] ? check_same_owner+0x340/0x340 [ 160.670271] ? rcu_note_context_switch+0x730/0x730 [ 160.675188] __should_failslab+0x124/0x180 [ 160.679504] should_failslab+0x9/0x14 [ 160.683464] __kmalloc+0x2c8/0x760 [ 160.686988] ? __es_remove_extent+0x9a3/0xba0 [ 160.691465] ? ext4_find_extent+0x775/0xa10 [ 160.695773] ext4_find_extent+0x775/0xa10 [ 160.699992] ? ext4_es_scan+0x970/0x970 [ 160.703953] ? __lock_acquire+0x3130/0x5020 [ 160.708259] ext4_ext_shift_extents+0xc9/0x1170 [ 160.712912] ? do_raw_write_trylock+0x1c0/0x1c0 [ 160.717564] ? kasan_check_write+0x14/0x20 [ 160.721877] ? ext4_ext_try_to_merge+0x5f0/0x5f0 [ 160.726621] ? ext4_es_remove_extent+0x12f/0x4e0 [ 160.731371] ? ext4_es_lookup_extent+0xde0/0xde0 [ 160.736133] ? down_write+0x8f/0x130 [ 160.739831] ? ext4_collapse_range+0xa83/0x1170 [ 160.744486] ? down_read+0x1d0/0x1d0 [ 160.748189] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 160.753711] ? ext4_writepage_trans_blocks+0x182/0x350 [ 160.758972] ext4_collapse_range+0xb02/0x1170 [ 160.763458] ? ext4_fiemap+0x1850/0x1850 [ 160.767500] ? pid_task+0x115/0x200 [ 160.771113] ? find_vpid+0xf0/0xf0 [ 160.774652] ? __f_unlock_pos+0x19/0x20 [ 160.778623] ext4_fallocate+0xce5/0x2330 [ 160.782677] ? __fget+0x4d5/0x740 [ 160.786124] ? ext4_insert_range+0x13d0/0x13d0 [ 160.790701] ? kasan_check_write+0x14/0x20 [ 160.794920] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 160.801051] ? fsnotify+0xbac/0x14e0 [ 160.804750] ? lock_acquire+0x1e4/0x540 [ 160.808706] ? vfs_fallocate+0x72a/0x940 [ 160.812755] ? fsnotify_first_mark+0x350/0x350 [ 160.817325] ? lock_release+0xa30/0xa30 [ 160.821284] ? check_same_owner+0x340/0x340 [ 160.825593] ? __fget_light+0x2f7/0x440 [ 160.829555] ? rcu_note_context_switch+0x730/0x730 [ 160.834476] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 160.839999] ? __sb_start_write+0x17f/0x300 [ 160.844321] ? ext4_insert_range+0x13d0/0x13d0 [ 160.848897] vfs_fallocate+0x4b4/0x940 [ 160.852773] ksys_fallocate+0x56/0x90 [ 160.856557] __x64_sys_fallocate+0x97/0xf0 [ 160.860778] do_syscall_64+0x1b9/0x820 [ 160.864648] ? finish_task_switch+0x1d3/0x870 [ 160.869130] ? syscall_return_slowpath+0x5e0/0x5e0 [ 160.874045] ? syscall_return_slowpath+0x31d/0x5e0 [ 160.878971] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 160.883974] ? prepare_exit_to_usermode+0x291/0x3b0 [ 160.888977] ? perf_trace_sys_enter+0xb10/0xb10 [ 160.893632] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 160.898463] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 160.903636] RIP: 0033:0x455e29 [ 160.906817] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 160.925989] RSP: 002b:00007f784a7c7c68 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 160.933682] RAX: ffffffffffffffda RBX: 00007f784a7c86d4 RCX: 0000000000455e29 [ 160.940933] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000013 [ 160.948189] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 160.955478] R10: 0000000000010000 R11: 0000000000000246 R12: 0000000000000014 04:52:50 executing program 0 (fault-call:2 fault-nth:3): r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) 04:52:50 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xa000, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:50 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) recvmmsg(r0, &(0x7f000000a980)=[{{&(0x7f0000008540)=@nfc_llcp, 0xffffffffffffffbb, &(0x7f000000a900)}}], 0x1, 0x0, &(0x7f000000ab00)={0x0, 0x1c9c380}) r1 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0xf0, 0x400) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000380)={0x0, 0xd394}, &(0x7f00000003c0)=0x8) sendmmsg$inet_sctp(r1, &(0x7f0000000480)=[{&(0x7f0000000140)=@in={0x2, 0x4e20, @broadcast=0xffffffff}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000200)="79c4e0e34c81b1b2748d44246eb3982945029bf499927d5c47b71a40cadfdd0f262cb3d749980d7d3540851958995a5acc6c10b9deb1d17c0a8174d4e9a2191e05833469c3fc8052ecb5bc5df9598b5872b2a008561f28578e084557105311a63dfc8b3bbe2931fd4a0eb6fa6f4a1e79f42a4e03dbe9f167a4", 0x79}, {&(0x7f0000000180)="310cc89351fa246c33e2", 0xa}, {&(0x7f0000000280)="60e47f8262b4df69145c064ce2cfa2376fb889b8a57eb3f009dee84c00aacd3dc35b5973022505afdaab3d75f52602b3bb297fe6134050f768d7", 0x3a}, {&(0x7f00000002c0)="74f3b2eb0fed426add1ffa93dcb37f975008db98b02f9b868c7f6ef5ea9eec7311c340d76b421ca1aa115314a442fbbb4a46d463643b7c55dbd2c575a73b599436d9463cfdd86028a90bf7e7211b3429e16309a1d7e8a9574d2469c7f361160decf000503e0f3bdf6354d8f5b693b84cc5e1dbeb760456f70c", 0x79}], 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="300000000000000001000000050008000002000002001f0085000000ffffffff05fb00000000000000000000", @ANYRES32=r2, @ANYBLOB="18000000000000008400000000000000d000070007000000"], 0x48, 0x24000080}], 0x1, 0xc800) setsockopt$inet6_buf(r0, 0x29, 0x2c, &(0x7f0000000000)="3f8e5b4813a015b4fcc1d953c745071ed71411a6a55c797c3ba2ba650080bc20253534c909fffa145b38d00b51fb67bdc1b3f32748140e15d984921f11099252698720b6871b71a278c764e5fd3f274b5ac80a0b6922cc3e603af098e5ef717ef75a694bb531f6593ed765cb430e84af956ac59f9face330c126f2cce8dff0949d06888745b1118e921c718fff5a756eff9d7e42798bc67051b800cc5ace22b9bc515b279180ad5a0336bb51b14147d5e801297fefaf02166307cb1504cbb66671c5be7039be0415bee578a82f9edfcf3c96e2de37e8087ccca9114dd90927bb01d502c4aa63c8cc", 0xe8) syz_emit_ethernet(0x437, &(0x7f0000000700)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv6={0x86dd, {0x0, 0x6, "c22df7", 0x401, 0x11, 0x0, @dev={0xfe, 0x80}, @local={0xfe, 0x80, [], 0xaa}, {[], @dccp={{0x0, 0x4e20, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "0087ae", 0x0, "ca8345"}, "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"}}}}}}, &(0x7f0000001780)) sendto$inet6(r0, &(0x7f0000000000), 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x4e21, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c) fcntl$setflags(r1, 0x2, 0x1) [ 160.962925] R13: 00000000004bbe4e R14: 00000000004c9368 R15: 0000000000000002 04:52:51 executing program 2: clock_gettime(0x0, &(0x7f00000068c0)={0x0, 0x0}) recvmmsg(0xffffffffffffffff, &(0x7f0000006740)=[{{&(0x7f0000000140)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @remote}}}, 0x80, &(0x7f0000000680)=[{&(0x7f00000001c0)=""/193, 0xc1}, {&(0x7f00000002c0)=""/207, 0xcf}, {&(0x7f00000003c0)=""/126, 0x7e}, {&(0x7f0000000440)=""/68, 0x44}, {&(0x7f00000004c0)=""/101, 0x65}, {&(0x7f0000000540)=""/241, 0xf1}, {&(0x7f0000000640)=""/3, 0x3}], 0x7, &(0x7f0000000700)=""/116, 0x74, 0x1}, 0xfffffffffffffff8}, {{&(0x7f0000000780)=@xdp, 0x80, &(0x7f0000002ac0)=[{&(0x7f0000000800)=""/183, 0xb7}, {&(0x7f00000008c0)=""/2, 0x2}, {&(0x7f0000000900)=""/4096, 0x1000}, {&(0x7f0000001900)=""/129, 0x81}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/51, 0x33}, {&(0x7f0000002a00)=""/77, 0x4d}, {&(0x7f0000002a80)=""/14, 0xe}], 0x8, &(0x7f0000002b40)=""/64, 0x40, 0x5}, 0x1a2e}, {{&(0x7f0000002b80)=@nfc, 0x80, &(0x7f0000002c80)=[{&(0x7f0000002c00)=""/63, 0x3f}, {&(0x7f0000002c40)=""/10, 0xa}], 0x2, &(0x7f0000002cc0)=""/95, 0x5f, 0x1}, 0x10000}, {{0x0, 0x0, &(0x7f0000003e40)=[{&(0x7f0000002d40)=""/4096, 0x1000}, {&(0x7f0000003d40)=""/242, 0xf2}], 0x2, &(0x7f0000003e80)=""/89, 0x59, 0x3ff}, 0x13f}, {{&(0x7f0000003f00)=@hci, 0x80, &(0x7f0000004040)=[{&(0x7f0000003f80)=""/178, 0xb2}], 0x1, &(0x7f0000004080)=""/206, 0xce, 0xc71b}, 0x6}, {{&(0x7f0000004180)=@nl=@proc, 0x80, &(0x7f00000065c0)=[{&(0x7f0000004200)=""/4096, 0x1000}, {&(0x7f0000005200)=""/109, 0x6d}, {&(0x7f0000005280)=""/4096, 0x1000}, {&(0x7f0000006280)=""/138, 0x8a}, {&(0x7f0000006340)=""/162, 0xa2}, {&(0x7f0000006400)=""/236, 0xec}, {&(0x7f0000006500)=""/160, 0xa0}], 0x7, &(0x7f0000006640)=""/206, 0xce, 0x100000001}, 0x8}], 0x6, 0x100, &(0x7f0000006900)={r0, r1+30000000}) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000006940)={0x7, 0x0, 0x1000}, 0x4) r3 = memfd_create(&(0x7f00000000c0)='#em1#+\x00', 0x0) write(r3, &(0x7f0000000100)="ff", 0x1) mmap(&(0x7f0000000000/0x7000)=nil, 0x7000, 0x80000000004, 0x11, r3, 0x0) r4 = socket$inet(0x2, 0x3, 0x2) getsockopt$inet_int(r4, 0x0, 0x33, &(0x7f0000000040), &(0x7f0000000080)=0x4) setsockopt$inet_int(r4, 0x0, 0xca, &(0x7f0000000000), 0x10) 04:52:51 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10000) 04:52:51 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8003, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:51 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x200, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:51 executing program 4: r0 = socket$inet6(0xa, 0x0, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:51 executing program 3: mprotect(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x4) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x100, 0x0) r0 = socket$inet6(0xa, 0x80003, 0x2c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x7}, 0x1c) sendmmsg(r0, &(0x7f0000000c40)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000003740)="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", 0x52d}], 0x1, &(0x7f0000000a80)}}], 0x1, 0x0) 04:52:51 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'kw(twofish)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00003c1000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000001fc0)={0x0, 0x0, &(0x7f0000001ec0)=[{&(0x7f0000000e80)="6bcdd0caa2f64b8889ed07744746356237a55fd7706dc18d8af3dc87be5363296487b9dacbbc2af31c21ac3cc74d7e111f5125f74fac7107", 0x38}], 0x1, &(0x7f0000001f40)}, 0x0) recvmsg(r2, &(0x7f0000000440)={&(0x7f0000000200)=@pppol2tpin6, 0x80, &(0x7f0000000840)=[{&(0x7f00000003c0)=""/59, 0x3b}], 0x1, &(0x7f00000008c0)=""/212, 0xd4}, 0x0) 04:52:51 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x1d4) connect$inet6(r1, &(0x7f0000000080)={0xa}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x13a) close(r1) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x28502, 0x0) connect$pptp(r2, &(0x7f0000000200)={0x18, 0x2, {0x3, @multicast1=0xe0000001}}, 0x1e) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x80000, 0x0) epoll_wait(r3, &(0x7f0000000140)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x9, 0xf399) 04:52:51 executing program 1: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x100, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f0000000240)={{0x9, 0x0, 0x0, 0x6, '\x00', 0x6}, 0x0, [0x2, 0x0, 0x7fffffff, 0xcd32, 0xfffffffffffffff8, 0x3f, 0x7ff, 0x6, 0x5f, 0x20, 0xc7, 0x4, 0x8, 0x9, 0x1, 0x90b1, 0x3, 0x8001, 0x3f, 0x7, 0x800, 0x0, 0x0, 0x0, 0x756, 0x4, 0x100000000, 0xffff, 0x7fffffff, 0x6, 0x101, 0xffffffff, 0x4, 0x101, 0x100000000, 0x1, 0x1, 0xe8, 0xffde, 0x1551931f, 0x3, 0x7fff, 0x9, 0x2, 0x7, 0x8000, 0x6, 0x4, 0x6, 0xffff, 0x9, 0x10000, 0x1, 0xff, 0x6, 0x2, 0x7, 0x101, 0x6, 0x8, 0x200, 0xbb52, 0x0, 0x10, 0x4, 0xfffffffffffffffa, 0x1ea, 0xfffffffffffffffc, 0x1f, 0x5, 0x0, 0xffff, 0x2000, 0x3f, 0x6, 0x1, 0x800, 0x1000, 0x4f30, 0x4, 0x9, 0x8, 0x7, 0x0, 0xb9a, 0x7, 0x6, 0x5, 0x0, 0xc619, 0x9522, 0x3, 0x8, 0x100, 0x9, 0x8, 0xffffffff957ac1cb, 0x401, 0xffffffffffff8000, 0x4c14, 0x4, 0x2, 0x8000, 0x0, 0x4, 0x1, 0x6, 0x1, 0x2, 0x6, 0x2, 0x1f, 0x101, 0x401, 0x1, 0x0, 0xffffffff, 0xfffffffffffffff8, 0x3, 0x10001, 0x7de, 0x9, 0x400, 0x9, 0x9, 0xffffffff80000000, 0x6, 0x8f], {0x77359400}}) pipe2(&(0x7f0000000040), 0x4000) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) socket$bt_bnep(0x1f, 0x3, 0x4) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xb, 0x1, "182152cdc237223035d398bc233624c13f4a1c5e9d3d5caa4c41c07812a984951ee0142b7cf6816a3188c269303515dfdfa07737ad8bea84770543935f165220", "e56367d02d29b3bc75ff659617f04f2256347780d253d7e8d4570d33aaa02412", [0x4, 0x1]}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) timerfd_create(0x3, 0x800) 04:52:51 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1400, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:51 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xf, 0x0, 0x10000) 04:52:51 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x0, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:51 executing program 3: r0 = socket$inet_smc(0x2b, 0x1, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x101000, 0x0) ioctl$ASHMEM_GET_PIN_STATUS(r1, 0x7709, 0x0) listen(r0, 0x0) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000000)) 04:52:51 executing program 2: r0 = memfd_create(&(0x7f0000033ff3)='\x00', 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000027ff3)='/dev/snd/seq\x00', 0x0, 0x20005) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000000)={{0xa, 0x4e23, 0x4, @mcast1={0xff, 0x1, [], 0x1}, 0x5}, {0xa, 0x4e24, 0x380000000000, @remote={0xfe, 0x80, [], 0xbb}, 0x8}, 0x2, [0x100000001, 0x3f, 0x3, 0x1, 0x0, 0x0, 0x5d, 0xfffffffffffffffa]}, 0x5c) r2 = dup2(r1, r0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000037000)={0x0, 0x0, 0x0, "9ede7a8c5ae95e48000000000000007f4f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa0500000074dbcfa6dc4d"}) keyctl$join(0x1, &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x0}) write$sndseq(r0, &(0x7f000000a000)=[{0x0, 0x1, 0x0, 0x0, @tick=0xfffffffffffffffd, {}, {}, @ext={0x0, &(0x7f0000038ffe)}}], 0x30) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x323) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000100)={0x12, @tick=0xfffffffffffffffe}) 04:52:51 executing program 5: socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$inet_mreq(r0, 0x0, 0x27, &(0x7f0000000080)={@loopback, @remote}, &(0x7f00000000c0)=0x8) r1 = socket$nl_generic(0xa, 0x3, 0x10) setsockopt$netlink_NETLINK_RX_RING(r1, 0x29, 0x6, &(0x7f0000000ff0)={0x2000000001c2, 0x0, 0xfffffffffffffffb, 0x8001}, 0x10) mq_unlink(&(0x7f0000000140)='em1ppp0\'wlan0\x00') 04:52:51 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x2000, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) write$eventfd(r1, &(0x7f0000000080)=0xa7e8, 0x8) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f00000001c0)=""/113) pselect6(0xfffffe93, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x18080, 0x0) 04:52:51 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x7, 0x0, 0x10000) 04:52:51 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x300, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:51 executing program 3: syz_open_dev$audion(&(0x7f0000000240)='/dev/audio#\x00', 0x5, 0x40000) r0 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a}, &(0x7f00000000c0)='v', 0x1, 0xfffffffffffffffb) keyctl$revoke(0x3, r0) socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) getsockopt$IPT_SO_GET_ENTRIES(r1, 0x0, 0x41, &(0x7f0000000100)={'mangle\x00', 0xd5, "8441314d675828f01dbdca4b7527af016d3ad0d010c247733ef570a6880988bfd2f55143d8b30c358512e4cba424fe5944d5578f1363409cdd61151bd42a40a40390cf66aa463c6b023f07870d84cd88a7cde043bd1390c5902c1eca4cae48c40b48dc2f5a3d3ad9689b0ae7ef06f17a6f252719f8cdcbcd177694371675dc9472c5e102aaff8007110c272bf31089edee9505dba61ca61f98ff2fcd627379f6f526d5f13e683f65b5c3835762ac6e9ca16d6fbaad20eb20ae1e4b6d0628b63919fb662807509ce5bc7bfe5e7ebd3e1439f7dea30f"}, &(0x7f0000000200)=0xf9) 04:52:51 executing program 2: r0 = memfd_create(&(0x7f0000033ff3)='\x00', 0x0) r1 = syz_open_dev$sndseq(&(0x7f0000027ff3)='/dev/snd/seq\x00', 0x0, 0x20005) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f0000000000)={{0xa, 0x4e23, 0x4, @mcast1={0xff, 0x1, [], 0x1}, 0x5}, {0xa, 0x4e24, 0x380000000000, @remote={0xfe, 0x80, [], 0xbb}, 0x8}, 0x2, [0x100000001, 0x3f, 0x3, 0x1, 0x0, 0x0, 0x5d, 0xfffffffffffffffa]}, 0x5c) r2 = dup2(r1, r0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000037000)={0x0, 0x0, 0x0, "9ede7a8c5ae95e48000000000000007f4f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa0500000074dbcfa6dc4d"}) keyctl$join(0x1, &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x0}) write$sndseq(r0, &(0x7f000000a000)=[{0x0, 0x1, 0x0, 0x0, @tick=0xfffffffffffffffd, {}, {}, @ext={0x0, &(0x7f0000038ffe)}}], 0x30) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x323) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000100)={0x12, @tick=0xfffffffffffffffe}) 04:52:52 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xd, 0x0, 0x10000) 04:52:52 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0) bind$bt_sco(r1, &(0x7f00000000c0)={0x1f, {0x8000, 0xfff, 0x200, 0x7, 0x4, 0x8000}}, 0x8) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r1, 0x111, 0x3, 0x0, 0x4) getsockopt$inet_sctp6_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x74, &(0x7f00000002c0)=""/4096, &(0x7f0000000100)=0x1000) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = socket(0xa, 0x1, 0x0) ioctl$sock_ifreq(r2, 0x89fb, &(0x7f0000000040)={"7369743000000000b5c7b9026c7fc5e5", @ifru_addrs=@in={0x2, 0x4e20, @rand_addr}}) 04:52:52 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r2 = memfd_create(&(0x7f0000000040)='\\\x00', 0x1) getpeername$packet(r2, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000340)=0x14) setsockopt$inet6_mreq(r2, 0x29, 0x1c, &(0x7f0000000380)={@mcast2={0xff, 0x2, [], 0x1}, r3}, 0x14) ioctl$KVM_NMI(r2, 0xae9a) r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) ioctl$TIOCCBRK(r0, 0x5428) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r4, 0x111, 0x5, 0x8, 0x4) r5 = add_key$user(&(0x7f0000000180)='user\x00', &(0x7f00000001c0)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000200)="833646787afea095121fd54b17275c7dc6f130dd760bb1cdb4326d9a31720a5291f91439124f48b6b3bffaac9fb2c2a2c5d1dc0e7745d3915ce4e18288a271ffaea5f2377ebe52baed12f9f773a8efe2e564be4f68bcb5989b9cb878bc5f54b01c80a14bc04f026120b46182b76a8017756d8ed1bdbf40bdfb0ac8e8233b2856294fb1de17a6ee14856261136ce2491f61bffc19f54164fc03344b8c4417b6972fafb43d9722e1972507a7f8ad5af86623cdedb398575b068f381d381538fa43bc40ca5da07344d6c1a2399731", 0xcd, 0xfffffffffffffff8) keyctl$revoke(0x3, r5) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) ioctl$TIOCGWINSZ(r4, 0x5413, &(0x7f0000000000)) 04:52:52 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x6004, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:52 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = memfd_create(&(0x7f0000033ff3)='\x00', 0x0) link(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='./file0\x00') r2 = syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x80000020002) r3 = dup2(r2, r1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000037000)={0x0, 0x0, 0x0, "9ede7a8c5ae95e48000000000000007f4f13eeab65c0322901dc6bd36cde2c51f01b7f0b014f9f91eeb7c37c7240f476c8d753d000aa0500000074dbcfa6dc4d"}) write$sndseq(r1, &(0x7f000000a000)=[{0x7, 0x3, 0x0, 0x0, @tick=0xfffffffffffffffd, {}, {}, @ext={0x0, &(0x7f0000038ffe)}}], 0x30) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000080)={0x4a48b125e13656b}) 04:52:52 executing program 4: r0 = socket$inet6(0xa, 0x0, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:52 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x0, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:52 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") timer_create(0x3, &(0x7f00000000c0)={0x0, 0x4000000000000002, 0x0, @thr={&(0x7f0000000080), &(0x7f0000000340)}}, &(0x7f0000000080)) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) timer_settime(0x0, 0x4, &(0x7f0000000140)={{r1, r2+30000000}, {0x0, 0x1c9c380}}, 0x0) r3 = getpid() r4 = fcntl$dupfd(r0, 0x406, r0) ioctl$LOOP_SET_STATUS(r4, 0x4c02, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x16, 0x4, "c14a2473145f7c14621d8ce643dc96f7074e1f8d931e230638ec7b57f5c13730fc7699539be07b5f070869c787f52334114d7b53a476b11c3cebd6f0c637994f", "e1a2fa6d3f1a91c4bc8b23540d3c90d4b40e36690c33fc302e66c873f9f95869", [0xfffffffffffffffc, 0x1000]}) getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f00000002c0)={{{@in6, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@ipv4={[], [], @remote}}}, &(0x7f0000000240)=0xe8) sendmsg$nl_generic(r4, &(0x7f0000000a40)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000a00)={&(0x7f00000003c0)={0x60c, 0x2b, 0x400, 0x70bd2b, 0x25dfdbfe, {0x17}, [@nested={0x4, 0x75}, @nested={0x1d8, 0x6f, [@typed={0x14, 0x57, @ipv6=@ipv4={[], [0xff, 0xff], @loopback=0x7f000001}}, @generic="b7609bc18f72e2fde47faf5081028ac87faf321995aa225a20a95a8cb8df0a3cdd8a3d3c02058215dbe6600e1fd2f1bb40e63fce39649bd2aae3e3235aaf06de275c0dc91f0e8b8e6cd29507552be8a64964bece14ef7cd7f2f7ee6772e87ec424a3351977cfd75273b6f0700a0ecb26920c19c1e3e1e56da31739972180ea9e19aa8f2b6752aa807a1b56346c", @typed={0x8, 0x7f, @pid=r3}, @generic="fccdd5631ad4cec905a983f3d6a9de1d073d1fa56b9927043a2e3a4f468a7fd4027e04162af4cae98c7f93bcf873e7e551b0a62c0c1b225714780716d565e63d33dbc07877190a78f5ee66db0a260a318a8eee9e7ab48bb1513a3720135260552c85665ae24dc92f47ee6abba2ee4b56ee2d743955dcde9e4c5edf0c0cd8", @generic="07653056d1efbfda447dc9eb5227f7e09f952a919e6384b87efb16cfda69ff7062bd25fdbbc6d588c93faf8978aee1b77df68ef8205ab7303c5b8e80437a863750f925fcb296bdb09ae34c86920e14c72b011b21ec07d0b33a50188274336b360699ffcbfa7deab524b6ae91c0ec62c74db96e50768cc5bedff72fb851f9b3bd8770b81b449f0b12dd103d0eed2e4f73bd040660916d2165e525e3fbdf13a6a4fc6054b6b8157aa9b0df578c32"]}, @typed={0xb0, 0x46, @binary="8c87ecd3d68a38a4717504b3689df0d6664ae1144ad19615a3fc4eb971cf82fd028eadf0f661899846a485012051a3d54626a0523bd91849ef1a503ea054350f3c376b2774a75c5366b4daa6c9e86507923889218c4eb7534e37c2b9a7f48dd4b634f6c75c1d7b8fdd05de965ebd609081f53b84bcd683a984550fd4094ed0391d3e46f5c175003c991819b71d6b03589bb0ebac0f82ce4206e78312baa7d4f0dd59f47004669d4af15269"}, @generic="6e1cac999b5f375466eeab1c4668392f9550959808d90841c6cb89235a838d5f021a319174ff84", @typed={0x8, 0x19, @pid=r3}, @nested={0x1f0, 0x32, [@generic="1cd695ed09aa3938b0162137989e831ec0e977780d1cff8945c943bbb19d1226a8dd2040a404e37e3289fb34e51cafc39d20e2c6434f92e27960698e409987a786818499d47f91d66549f19a4756dd048176e7ddbbae1ac7f4317b336a3dc28fd0f4639a5c8dae040ce0e7c2eb3f7a809a4e5e87738beb2f0faf39d3b26d82c31c1000ed674e051ecca3584ae96fb1cbb8164fd7", @typed={0x84, 0x59, @binary="172788fae9e30cccef690e516e94fc0a50b77bbcf784ba917b496c17d9e4a966af345b22e0c32b5d7dea877dfadd81ab279ba7af6b39a153d7516942432400041d1ad5479152b6227e497fb253a3e81633568d1ff442ff6a71f1f54742f063c87111e1565209be0c331e7533140b85001bfae534580a2174e140d2b0e11b"}, @typed={0x8, 0x52, @u32=0x7fffffff}, @typed={0x8, 0x38, @uid=r5}, @generic="00a9b0c2ff8de3d803193d2b4955df48916ec616ca497ba3cbedd300fe2408c04884b2c2a5c562ae99301d882ee77dc9210955af6f11710c0662770094aaa4cdc3aaedbfb5d86c0b5229ef661bc97f294f4557e2ba4f92af6e90406032a344b51a56fa039d88409c48453c0ee0b30c26bfce717d1ce32b227ffd3ebb3b83c91ddbb73d122c1dd72c6b42bc4bd82c603e4b91f439225b61ca090652f2bc966237d0bfa740b1e342392f7710417059740801eac554a6cb06525a", @generic="fe8587b4513c7aa2ac"]}, @nested={0x18, 0x2e, [@generic="b00618ebb0ae77bdff31f907a7c64179bc"]}, @typed={0x58, 0x2b, @binary="e4b02db7b0014bee39594b8a273ce707db4306fdf063bbf71b436157870fe6b4d4a458f1984733e0c0775b5110363db48e1e2204420cd83d72269ce46ff1b67f31ad04f52ea1628542e64574dc80b06ba848e757"}, @generic="57f592f5a6dbe108d6faf395680a00cbc3374f53e80dd70a2d0ffbfb5cb98319728a44f64aca1eef653f832c770695748437d79f24bbd0283df06246f9713bf44139f32c10e74b44d907262167c526efdde5332603896e6c7ac2db51601e0f0c60ab564aae15d3425ccbe8d0ccccc9f7f72c9f39bee9098c8bdc704eecaa50748901eee615861624f485028191d2e7a13e5465017e0d0047618a40c95ee916ce20ed3342002edf7d7a79bafb6a298fefb9370c5b5f5be21dcb492bf31e1b79735dd08fac5549336f057d0e571283f17fb6dd4f9c6c79fbf02686848573"]}, 0x60c}, 0x1, 0x0, 0x0, 0x40}, 0x4000891) ptrace$cont(0x18, r3, 0x6, 0x8) timer_gettime(0x0, &(0x7f0000000040)) 04:52:52 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x10, 0x0, 0x10000) 04:52:52 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='debugfs\x00', 0x0, &(0x7f0000000300)) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000080)={0x0, 0x6}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000140)={r1, 0x9}, 0x8) r2 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) lseek(r2, 0x4, 0x0) 04:52:52 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:52 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r2, r0, &(0x7f0000000140), 0x1) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu\x00', 0x200002, 0x0) fallocate(r1, 0x2, 0x85, 0x100000000) r4 = openat$cgroup_int(r3, &(0x7f0000000080)='cpuset.mems\x00', 0x2, 0x0) write$P9_RREADLINK(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="2d00d707002e2f66696c653000004c45e9edf89e302682fb1e000000000000000000"], 0x10) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000100)={'bond_slave_1\x00', 0x200}) write$cgroup_int(r4, &(0x7f00000000c0), 0x1) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) 04:52:52 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8005, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:52 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x3) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nullb0\x00', 0x1a0102, 0x0) preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000000)=""/110, 0x6e}], 0x1, 0x2c) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x4, 0x12, r1, 0x0) write(r1, &(0x7f0000000640)='\x00', 0x1) 04:52:52 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x2400, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) sendto$packet(r1, &(0x7f0000000040)="eb76fc3ea3777a17040f1000cac88bf2df", 0x11, 0x880, 0x0, 0x0) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:52 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xc00, 0x0, 0x10000) 04:52:52 executing program 3: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_NMI(r3, 0xae9a) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000007000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000000)="f20fbcbd0080000066b81f008ec8c4e205bcab27000000b8d13200000f23d80f21f835000000900f23f8c4e2fdb80d0b00000066baf80cb8bc068586ef66bafc0cec660f38820265f2af0fd2c9b8000001000f23c80f21f8350000b0000f23f8", 0x60}], 0x1, 0x80000037, &(0x7f0000000180), 0x0) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000080)=0x0) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000003c0)={{{@in6=@dev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in=@local}}, &(0x7f0000000340)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xd, 0xe, &(0x7f0000000180)=@raw=[@generic={0xa21e, 0xf58, 0x9, 0x4}, @ldst={0x3, 0x3, 0x6, 0xf, 0x6, 0xffffffc0, 0x4}, @jmp={0x5, 0x7ff, 0x8, 0xf, 0xf, 0xfffffff8, 0xfffffffffffffff1}, @call={0x85, 0x0, 0x0, 0x38}, @map={0x18, 0x0, 0x1, 0x0, r0}, @exit={0x95}, @alu={0x7, 0xfff, 0xd, 0x5, 0x4, 0x30, 0x18}], &(0x7f0000000200)='syzkaller\x00', 0x401, 0xf0, &(0x7f0000000240)=""/240, 0x41100, 0x1, [], r5, 0x8}, 0x48) ptrace$poke(0x5, r4, &(0x7f00000000c0), 0x80000000) ioctl$KVM_RUN(r3, 0xae80, 0x0) 04:52:52 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) syz_mount_image$iso9660(&(0x7f0000000080)='iso9660\x00', &(0x7f00000000c0)='./file0\x00', 0x8000, 0xa, &(0x7f0000000740)=[{&(0x7f0000000100)="17447a911b05c3ba10a50e90570329459cf8526f092740c782f97130c42f80241ead46c7069e32fcb27ead55269fdc2c8f01ca3edcd039c28eda99871c922984779d071b299b8ac9ab8824ae63608758a654f199f08df7f1e76f4bf5ed942d2fd957278e9bcf0c47a749032bed547b5440f8a8876cb4aa3c99eb8d1bebfc11a497514936b645d82805606bb5b83916ce8bcc9da935f294e5b67466525bba0995d0d95d7ab1e8ff954c30", 0xaa, 0xffffffffffff7fff}, {&(0x7f00000001c0)="0fdb6401324842ab7594628576acb46b00c702bf4d4ea6b90c2039b48de5efba3d258d8c13d1372711e37563a8234f97fc69588efebe189871a2efe8bd6d30c5f626c76ae55cb7d03185f2544929a4adede2165d538573640d3835dfa257aaf882a49963c372ba0722da22af755f613f6b76a7e286f1c371125c15853c427163efb755e3548a926c54094b8d3b", 0x8d, 0x5}, {&(0x7f00000002c0)="84f7f108e0ac7b179bdfba104c51961d6fa06387bc903363124d22b943e8d8a063d31b", 0x23, 0x7}, {&(0x7f0000000300)="b6aae3228076d1c265c240e8683dfaeceae213e1329ee3e1d06b0c47bf99a8e09b5527d4626bc181cc759309a28f4bf50a3e3131ce6db5283ed843d131d5c55decb3a6ecd9214031cec471e84a6f66dd", 0x50, 0x8}, {&(0x7f0000000380)="bffeb9676e51220f1ce778cbbd3cfc1fe934d76802f3fc917191975fd34e4711003d660c904b49272428b5a65007610ed1f80a186c2a32078fabdfc1a99a52554bd516b97f6d87408278c892fbed712d041328fcba0332db63517eee5784b33691cee5bf54826acb7f0f118e198f217f5928b69241405cdc4dc0233c20157f48bd5f2ab1263084b54faa46154b01d406c88ae701d0f65197e1c1b32435a1685759d78045721813935da9af4575294d0f1868e5cd8d75c9b5148b6f63f0ab281ea9cd74e46f950e071a277cebad52be02d8a570aa05936352c22c58385c43fdfdf68b2c549a426c0316", 0xe9, 0x1}, {&(0x7f0000000480)="5b65a610ad2338bec503f53744da3488a82e88d917c89cd59febbb1e7bf34aac1593", 0x22}, {&(0x7f00000004c0)="1f20c07eca15f4f241f8113a37d4b8ac35a83f1c63fc7d8339a6e6f4da72e2a70330b9f88e04cbb84a0d66443a36c69e3afc1812de4eb875b6577d1e58", 0x3d, 0x3}, {&(0x7f0000000500)="247cfdfbb573ec5161cfb6c7246c90f0376da994aa40c3a4a01ce66565df2e2732612615f87a0e57e7cf2bb3e34bc40b2e5401173c47b3a2bce18258b6760998d3ebc339e4ea631b0f5b65dd2f877784195e1db74602ba1c4a3b4c95f23643d3081185e09ff4f19e5aa83e9fd1df3a50cde0c7e0637e02fd570750c49f59945680beed7b1ee187d097798bb20f7beda2e76885add91a6d96efb3112a75d01563c755a318a3c3bf38c255b2a8cc2516b99f1b665aab596b934a19ff30dad08bd69e315c26e990f76467a4ebb323e600bb16a69e775fb4c3c486cd407748f72ab37d4e95cbeb3861e4be37aca3b86d611d6d9e7addedf87bdc2b", 0xf9, 0x2e}, {&(0x7f0000000600)="d51eb0a134b510e48caa88031ed03fc4e2b9fa1b9ea8c4ba64c2b25995fd274f0abbf0a6aa7e2ab13168308d8a07e3ce83688723c972187053f95dbb73f6a4ccd7ee546c871dc95c3c4e099838eed22acfd83466e8fd8c18ca5e98b993d8f57270e3d1", 0x63, 0x8}, {&(0x7f0000000680)="bdb6617245546122a0a660f91da8319ce99a7b1ea05e8dedf6472921de2caf7e38d47aee03db6ccbc0c182e66c6ed16770dc4af03da1c71c0aee0432f2eedb61cc25bed379c4a93c7ff028bc2ba4054fcb7c5de0b0861d90c68f795427e077baaf0d37f5f708c14b841a28c236680f6c384f05e61359f472e99b755540ef192110ad7a5e9cc612ae19b72650df7292e1706a69bb62996147d303851b8054", 0x9e, 0x700000000000000}], 0x1004, &(0x7f0000000840)={[{@map_off='map=off', 0x2c}, {@iocharset={'iocharset', 0x3d, 'cp949'}, 0x2c}, {@map_acorn='map=acorn', 0x2c}, {@map_acorn='map=acorn', 0x2c}, {@unhide='unhide', 0x2c}, {@gid={'gid', 0x3d, [0x36, 0x5867ecfc3e44b3fc, 0x35, 0x0, 0x3f, 0x0, 0x3c3a15be1c2de341, 0x78, 0x37]}, 0x2c}]}) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1c}}], 0x10) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x65, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}], 0x1c) close(r2) close(r1) 04:52:52 executing program 2: mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r0 = socket(0x2, 0x2, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f000000eff4)) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)=0x0) fcntl$lock(r0, 0x7, &(0x7f0000000040)={0x3, 0x1, 0x2, 0x80000000, r2}) epoll_wait(r1, &(0x7f000000affb)=[{}], 0x1, 0xfffffffffffffff8) shutdown(r0, 0x1) shutdown(r0, 0x0) 04:52:52 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xe006, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:52 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) [ 162.759651] binder: BINDER_SET_CONTEXT_MGR already set [ 162.765203] binder: 10884:10888 ioctl 40046207 0 returned -16 04:52:53 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:53 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x4, 0x0, 0x10000) 04:52:53 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x4000, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:53 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x4, &(0x7f00000000c0)=0x8, 0x4) r1 = getpgid(0x0) ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000000200)="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") r2 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, 0xfffffffffffffffa) r3 = add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xffffffffffffffff) keyctl$unlink(0x9, r2, r3) fcntl$lock(r0, 0x5, &(0x7f0000000000)={0x1, 0x6, 0x7, 0x8001, r1}) socket$inet_smc(0x2b, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x4, &(0x7f0000000040), &(0x7f0000000080)=0xfffffc5e) 04:52:53 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:53 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x0, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:53 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) syz_emit_ethernet(0x7e, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff0808450000700000000000019078ac1414bbac1414110303907800000000450000000000000000040000ac1414aaac141400444000000000000000000000e000000200000000e000000100000000000000007f00000100000000ffffffff00000000e000000100000000ac14140000000000"], &(0x7f0000000000)) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) select(0x40, &(0x7f0000000040)={0x3, 0x9, 0x9, 0x401, 0x8, 0x6, 0x1, 0x49}, &(0x7f0000000080)={0x7f, 0xaa, 0x2, 0x7fffffff, 0x8, 0x0, 0x38170702, 0x7ff}, &(0x7f00000000c0)={0x8, 0x6, 0x6, 0x9, 0xf5af, 0x3, 0x69c, 0xfff}, &(0x7f0000000140)={r1, r2/1000+10000}) r3 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x2) pread64(r0, &(0x7f0000000340)=""/4096, 0x1000, 0x0) ioctl$SCSI_IOCTL_GET_PCI(r3, 0x5387, &(0x7f0000000300)) 04:52:53 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$KVM_GET_SUPPORTED_CPUID(r1, 0xc008ae05, &(0x7f0000000180)=""/219) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:53 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1700, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:53 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8000000000000, 0x10000) 04:52:53 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x40}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000fafff7)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x3, 0x400) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000080)={0x1, r2, 0x1}) 04:52:53 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000080)={0x0}) r4 = mmap$binder(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x10, r1, 0x0) r5 = mmap$binder(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x7, 0x110, r2, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000540)={0x118, 0x0, &(0x7f0000000340)=[@request_death={0x400c630e, 0x0, 0x3}, @reply_sg={0x40486312, {{0x3, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x30, 0x28, &(0x7f0000000100)=[@flat={0x73682a85, 0x0, r3, 0x3}, @flat={0x73682a85, 0x5d4bdac730229279, r4}], &(0x7f0000000180)=[0x18, 0x58, 0x18, 0x30, 0x0]}, 0x6}}, @release={0x40046306}, @enter_looper={0x630c}, @increfs={0x40046304, 0x3}, @acquire={0x40046305, 0x3}, @reply_sg={0x40486312, {{0x4, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x30, 0x10, &(0x7f00000001c0)=[@flat={0x77622a85, 0x101, r5, 0x1}, @fd={0x66642a85, 0x0, r0, 0x0, 0x3}], &(0x7f0000000200)=[0x40, 0x20]}, 0x3ff}}, @transaction={0x40406300, {0x4, 0x0, 0x2, 0x0, 0x11, 0x0, 0x0, 0x48, 0x28, &(0x7f0000000280)=[@fda={0x66646185, 0x6, 0x1, 0x2d}, @ptr={0x70742a85, 0x0, &(0x7f0000000240), 0x1, 0x2, 0x11}], &(0x7f0000000300)=[0x30, 0x78, 0x18, 0x0, 0x38]}}, @clear_death={0x400c630f, 0x3, 0x1}], 0x83, 0x0, &(0x7f0000000480)="3c539cc759961568f493e6f8da979c40f55e03b157205a8e4ffedf0f7360d5c954cee417877070597a3402e411ac03d0427d1d0058cab068613c5940acec71eda0f1478c7760dff3606fa33cfdeb34b3c4c0328cfc6a91ea8c2024d9b6f62bf4a971caebd0969d5619e1b9a4c4a2cfecea88b62043fa93996f1b849aab68e438667e43"}) [ 163.485771] binder: 10932:10935 BC_REQUEST_DEATH_NOTIFICATION invalid ref 0 [ 163.493046] binder: 10932:10935 got reply transaction with no transaction stack [ 163.500608] binder: 10932:10935 transaction failed 29201/-71, size 48-40 line 2759 [ 163.515891] binder: 10932:10942 BC_REQUEST_DEATH_NOTIFICATION invalid ref 0 [ 163.523071] binder: 10932:10942 got reply transaction with no transaction stack 04:52:53 executing program 5: init_module(&(0x7f0000000100)='-securitykeyringnodeveth1%md5sum[vmnet1\x00', 0x28, &(0x7f0000000180)='pvboxnet1locpuset^]\x00') r0 = syz_open_dev$sndtimer(&(0x7f0000000140)='/dev/snd/timer\x00', 0x0, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) write$P9_RLOCK(r1, &(0x7f0000000080)={0x8, 0x35, 0x2, 0x3}, 0x8) ioctl$EVIOCSABS0(r1, 0x401845c0, &(0x7f00000000c0)={0xe8cd, 0xfffffffffffffffc, 0x100000000, 0x6, 0x0, 0x3ff}) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000000)={0x3, 0x0, 0xfffffffffffffffd, 0xfffffdfd}) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x84, r2, 0x0, 0x70bd29, 0x25dfdbfd, {0x1}, [@IPVS_CMD_ATTR_DAEMON={0x70, 0x3, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1={0xff, 0x1, [], 0x1}}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1={0xff, 0x1, [], 0x1}}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast=0xffffffff}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1={0xff, 0x1, [], 0x1}}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x20040000}, 0x8000) ioctl$sock_bt_bnep_BNEPGETCONNLIST(r1, 0x800442d2, &(0x7f0000000240)={0x4, &(0x7f00000001c0)=[{}, {}, {}, {}]}) 04:52:53 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x2001, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:53 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x40000000, 0x10000) 04:52:53 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x200003, 0x0) setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r1, 0x84, 0x15, &(0x7f0000000040)={0xffffffff7fffffff}, 0x1) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000200)={'syz_tun\x00', &(0x7f0000000140)=ANY=[@ANYRES64=0x0, @ANYPTR64=&(0x7f0000000240)=ANY=[@ANYRES16=r1, @ANYBLOB="d0036162a463edaf7e2f5dcf76fb0dbf898a127fd5d44a4ec171f5fa528d4e7d202b5b4c4ff3b0a758a211e5f32c78a098a7ecd57190bedbe2133ef4cd214814179dd89327fd1c9a31f548e51bd17354a0e9a68ff9dedb4468cef809bd3b549e57d7eea34f2435daa2defca1585369a64ce135552f981b59cede0aa35fbec3faf23c855ab2a7d39c4f1329aa6a5e83e480cb66521b957e67fcad7c568409626d71353026ddfb2930e78f3fd72e59f8212c4a38707a2047b7f80dc3317b2e64f3", @ANYRESDEC=r1, @ANYRES16=r1], @ANYRES16=r1, @ANYRES32=r0, @ANYRES16=r1]}) [ 163.530550] binder: 10932:10942 transaction failed 29201/-71, size 48-40 line 2759 04:52:54 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x600, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:54 executing program 3: mkdir(&(0x7f0000f4eff8)='./file0\x00', 0x0) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) symlinkat(&(0x7f0000000080)='./file0\x00', r0, &(0x7f00000002c0)='./file0\x00') getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYBLOB="49000000c75ef1ece1d19a87e501a99d904b2d1e8f3f8098795cd340178d1be8c64994e463f62f8920ec3976e5f2a11c4cf5798b55fef6e5464170ab00a04c32af4a749f9dd32583adf221e677"], &(0x7f0000000000)=0x51) fcntl$getownex(r0, 0x10, &(0x7f00000001c0)={0x0, 0x0}) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x73a6) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000280)={'ifb0\x00', &(0x7f00000003c0)=@ethtool_flash={0x33, 0x0, "a08bd2c2bb1b9ebc68566943def40f8d1bdfab5e0ada3f3bfa6ed305af0b5a18f5bb85f13694194e425100dd4d93e0e74aa2c03e745dc52052b0d866f614caac01a47d933b7732b62da822d43563c6825829fff4f143eedb71da3a93366603f7dc95bc998a7ad2ddf76874c5aae56e78b08bee72d51d7527efc039ff97fe990a"}}) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000300)={r1, @in={{0x2, 0x4e23, @loopback=0x7f000001}}, 0x1, 0xe05f, 0x3ff, 0x3, 0x101}, &(0x7f0000000180)=0x98) linkat(r0, &(0x7f0000000040)='./file0\x00', r0, &(0x7f00000004c0)='./file0\x00', 0x1000) unlinkat(r0, &(0x7f0000000200)='./file1\x00', 0x0) 04:52:54 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:54 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x4000000000000, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x8, 0x80) ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000140)=0x7) ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f0000000180)=""/96) ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000100)={0x52, 0x6, 0x1f, {0x4, 0x9}, {0x8, 0x9}, @cond=[{0x1590, 0x1, 0x6b, 0x6be16c5c, 0x7, 0x8}, {0x3716, 0x1, 0x1, 0x2, 0x8, 0xa8}]}) perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x4, 0x0, 0x200, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0xc164, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9ed}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 04:52:54 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x80000, 0x10000) 04:52:54 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:54 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000040)="025cc83d6d345f8f762070") pipe(&(0x7f0000000940)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000640)=[{&(0x7f0000000580)="b1", 0x1}], 0x1, 0x0) ioctl$IOC_PR_RELEASE(r1, 0x401070ca, &(0x7f0000000300)={0x800, 0x5c, 0x40000002}) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000000)=0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000140)={{{@in=@multicast2, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@dev}}, &(0x7f0000000080)=0xe8) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0, 0x0}, &(0x7f0000000280)=0xc) setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000002c0)={r3, r4, r5}, 0xc) close(r1) listen(r0, 0x800) vmsplice(r2, &(0x7f00000000c0)=[{&(0x7f0000000100)="00f7", 0x2}], 0x1, 0x0) listen(r0, 0x7) 04:52:54 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:54 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x10000, 0x194) r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) connect(r0, &(0x7f0000000200)=@nl=@proc={0x10, 0x0, 0x25dfdbfd, 0x20000000}, 0x80) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptmx\x00', 0x2000, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000340)='/dev/uinput\x00', 0x2000021fff3, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd, 0x0, 0x0, 0x8000, 0x40007, 0x0, 0x1ff}, &(0x7f0000768000), &(0x7f0000086000)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$sock_SIOCADDDLCI(r2, 0x8980, &(0x7f0000000040)={'ip6gre0\x00', 0x7f}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) lstat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)) 04:52:54 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x1, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) syz_open_pts(r0, 0x0) write(r0, &(0x7f0000c34fff), 0xffffff0b) 04:52:54 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x500, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:54 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x87000000, 0x10000) 04:52:54 executing program 2: statx(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x400, 0x0, &(0x7f00000002c0)) r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x800, 0x8) renameat2(r0, &(0x7f0000000100)='./file0\x00', r0, &(0x7f0000000140)='./file0\x00', 0x1) r1 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x601) renameat2(r0, &(0x7f0000000040)='./file0\x00', r1, &(0x7f00000000c0)='./file0\x00', 0x1) 04:52:54 executing program 1: r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x400, 0x0) ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000100)) openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ptmx\x00', 0x8200, 0x0) syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$TUNSETNOCSUM(r1, 0x400454c8, 0x1) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:52:54 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000180)="025cc80a2b345f8f762070") r1 = socket$inet_sctp(0x2, 0x1, 0x84) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='{.{md5sumGPL\x00'}, 0x10) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0}, &(0x7f0000000100)=0xc) lstat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$P9_RGETATTR(r2, &(0x7f00000002c0)={0xa0, 0x19, 0x2, {0xb99dc45e3932598f, {0x56, 0x4, 0x6}, 0x0, r3, r4, 0x1ff, 0x80000001, 0x8, 0xff, 0x5, 0x2, 0x8, 0x4, 0x0, 0x5, 0x0, 0x10000, 0x98, 0x0, 0x480000000000}}, 0xa0) sendmsg$inet_sctp(r1, &(0x7f00000004c0)={&(0x7f0000000040)=@in={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10, &(0x7f0000000140)=[{&(0x7f00000001c0)='W', 0x1}], 0x1, &(0x7f0000000400)=[@init={0x18, 0x84, 0x0, {0x7ff}}], 0x18}, 0x48040) 04:52:54 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xa007, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:54 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8700, 0x10000) 04:52:54 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) setsockopt$sock_int(r1, 0x1, 0x5, &(0x7f0000000040)=0x3, 0x4) 04:52:54 executing program 2: mkdir(&(0x7f00000000c0)='./control\x00', 0x0) accept4$unix(0xffffffffffffff9c, &(0x7f0000000100)=@abs, &(0x7f0000000000)=0x6e, 0x0) r0 = accept$unix(0xffffffffffffffff, &(0x7f0000006480)=@abs, &(0x7f0000006500)=0x6e) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x3000001, 0x32, r0, 0x1ffe) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f0000000240)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time=@time={0x77359400}}], 0x30) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f0000000040)) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f0000000080)) close(r1) syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) 04:52:54 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xc000, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:54 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x40000, 0x10000) 04:52:54 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(0xffffffffffffffff, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:54 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net\x00') ioctl$sock_bt_hidp_HIDPCONNDEL(r0, 0x400448c9, &(0x7f0000000080)={{0x4, 0x1000, 0x1, 0x9, 0x7ff, 0x5}, 0xfff}) openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x80, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000200)='/dev/binder#\x00', 0x0, 0x800000) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:52:54 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x10, 0x3, 0x4) sendmsg(r1, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000000307031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e28000000110affffba010000000009b356da5a80d18be34c8546c8243929db2406b20cd37ed01cc0", 0x4c}], 0x1}, 0x0) 04:52:54 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xf, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:55 executing program 5: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x40000, 0x10000) 04:52:55 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xe4ffffff, 0x10000) 04:52:55 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:55 executing program 2: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000182000)={&(0x7f0000184000)={0x2, 0xf, 0x0, 0x0, 0x2}, 0x10}, 0x1}, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000)=0x0) r2 = accept$inet6(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, @dev}, &(0x7f0000000080)=0x1c) r3 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0x6, 0x1) ioctl$PERF_EVENT_IOC_ID(r3, 0x80082407, &(0x7f0000000280)) stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f00000000c0), &(0x7f0000000100)=0x4) prctl$setptracer(0x59616d61, r1) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/mixer\x00', 0x40c001, 0x0) ioctl$KVM_SET_TSS_ADDR(r4, 0xae47, 0xd000) 04:52:55 executing program 3: perf_event_open(&(0x7f0000000180)={0x5, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0xbf4, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = semget$private(0x0, 0x3, 0x0) semctl$IPC_RMID(r0, 0x0, 0x0) 04:52:55 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x80000, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) write$binfmt_elf32(r0, &(0x7f0000000180)={{0x7f, 0x45, 0x4c, 0x46, 0x9, 0x4, 0x7f, 0x7ff, 0x800, 0x2, 0x7, 0x3, 0x3c2, 0x38, 0x2b6, 0x5, 0xd97, 0x20, 0x2, 0x14000000000, 0xfffffffffffffff9, 0x4}, [{0x60000000, 0x1, 0x9, 0x2, 0x4, 0x0, 0x2, 0x5}, {0x6474e551, 0x401, 0x4, 0x9, 0x4, 0x7, 0x3, 0x5}], "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"}, 0x1078) 04:52:55 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xc002, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:55 executing program 2: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x80, 0x0) ioctl$LOOP_SET_CAPACITY(r1, 0x4c07) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000280)={0x98299e3, {{0xa, 0x4e22, 0x0, @empty, 0x1f}}, 0x1, 0x5, [{{0xa, 0x4e21, 0x101, @remote={0xfe, 0x80, [], 0xbb}, 0x4}}, {{0xa, 0x4e22, 0x80000000, @mcast1={0xff, 0x1, [], 0x1}, 0x5}}, {{0xa, 0x4e21, 0x3, @mcast2={0xff, 0x2, [], 0x1}, 0x7ff}}, {{0xa, 0x4e20, 0x9, @local={0xfe, 0x80, [], 0xaa}, 0x401}}, {{0xa, 0x4e23, 0xfffffffffffffffc, @mcast2={0xff, 0x2, [], 0x1}, 0x3741}}]}, 0x310) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@dev={0xfe, 0x80}, 0x0, 0x1}, 0x20) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) 04:52:55 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xf5ffffff, 0x10000) 04:52:55 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1300, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:55 executing program 5: r0 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) write(r0, &(0x7f0000000180)="4988671e643551776a3808945116cc6824f5a8d2c7916f500b59f6546ca09ba6ee7aa68a8ef193c1e81e410692927a571cd384d126851d015b22bfb5baabec6fa6cc9226a9052bf09321e101d467df43c88ba1eff158c0ea80c402d9c70082d83ec257fdc3301a1c3188e02e3df872f036", 0x71) r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x2) write(r1, &(0x7f00000002c0)="6fc774a4331aeedf0a75e9cb190d90dc0ef6ec6a0839e97204c4abe6caab4e7090bb770f87b733d40ee77dc50000000000000000", 0xb1) r2 = gettid() r3 = getpgrp(0x0) kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r0, &(0x7f0000000240)={r1, r1}) r4 = socket$inet6(0xa, 0x1, 0x0) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x70, r5, 0x320, 0x70bd29, 0x25dfdbff, {0xf}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x80000000}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_DEST={0x40, 0x2, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x7}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x7}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x6}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast2=0xe0000002}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x40000000000}]}, 0x70}, 0x1, 0x0, 0x0, 0x10}, 0x804) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000080)={'team0\x00', 0x0}) inotify_add_watch(r0, &(0x7f0000000280)='./file0\x00', 0x8a) setsockopt$packet_drop_memb(r1, 0x107, 0x2, &(0x7f0000000200)={r6, 0x1, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x10) ioctl(r4, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") ppoll(&(0x7f0000000300)=[{r1}], 0x20000000000002c4, &(0x7f0000000100)={0x77359400}, &(0x7f0000000140)={0x2}, 0x16b) 04:52:55 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) fcntl$setpipe(r0, 0x407, 0x7) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) setsockopt$sock_void(r2, 0x1, 0x1b, 0x0, 0x0) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:52:55 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xfffffffe, 0x10000) 04:52:55 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x1, 0x10000) ioctl$BLKTRACESTOP(r1, 0x1275, 0x0) setsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, &(0x7f0000000040)=0x5, 0x4) sendmsg$nl_netfilter(r0, &(0x7f0000000100)={&(0x7f0000de2ff4)={0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0x20, 0x4, 0x8, 0xffffffffffffffff, 0x0, 0x0, {}, [@typed={0xc, 0x2, @u64}]}, 0x20}, 0x1}, 0x0) 04:52:55 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x400, 0x0) ioctl$RNDGETENTCNT(r1, 0x80045200, &(0x7f0000000080)) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_read_part_table(0x0, 0x0, &(0x7f0000000100)) 04:52:55 executing program 1: r0 = syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0x6, 0x200) ioctl$SNDRV_TIMER_IOCTL_PVERSION(r0, 0x80045400, &(0x7f0000000140)) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x4c2, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0xfffffffffffffffe) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000180)='/dev/uinput\x00', 0x400000010, 0x0) rt_sigprocmask(0x2, &(0x7f00000001c0)={0x7}, &(0x7f0000000200), 0x8) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r2, 0x28, 0x2, &(0x7f0000000040)=0xffffffffffff55a5, 0x8) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:52:55 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x2006, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:55 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x0, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) [ 165.989843] netlink: 'syz-executor3': attribute type 2 has an invalid length. [ 165.999199] netlink: 'syz-executor3': attribute type 2 has an invalid length. 04:52:56 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x4004, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:56 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f000001b000)={@multicast2=0xe0000002, @loopback=0x7f000001, @multicast1=0xe0000001}, 0xc) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqsrc(r2, 0x0, 0x27, &(0x7f000001b000)={@multicast2=0xe0000002, @loopback=0x7f000001, @dev={0xac, 0x14}}, 0xc) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x40000, 0x0) ioctl$RTC_ALM_READ(r3, 0x80247008, &(0x7f0000000040)) dup3(r0, r2, 0x0) r4 = getpgid(0x0) ptrace$peekuser(0x3, r4, 0x4) 04:52:56 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'aead\x00', 0x0, 0x0, 'morus640-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)="71e67a15cdf0319fa22748f9a91c66b3", 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vcan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'veth0\x00', r1}) setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x0) r2 = accept4$alg(r0, 0x0, 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$kcm(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000240)="2115f54773e6ca915eba6663308ba2fba195358549947ce455cfac4a763f1d9e629523eadb5fedf9dd9f4b3272c11c25", 0x30}], 0x1, &(0x7f00000068c0)=ANY=[]}, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f00000001c0)={0x0, 0x5, 0x820f, 0x3a0134f1, 0x1, 0x4000000000000, 0x5, 0x10000, 0x0}, &(0x7f0000000200)=0x20) setsockopt$inet_sctp_SCTP_DELAYED_SACK(r3, 0x84, 0x10, &(0x7f0000000280)=@sack_info={r4, 0x1, 0x1}, 0xc) recvmmsg(r2, &(0x7f0000006880)=[{{&(0x7f0000000000)=@ipx, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/36, 0xf}, {&(0x7f00000017c0)=""/4096, 0x1000}], 0x2, &(0x7f0000000600)=""/154, 0x9a}}], 0xf, 0x0, 0x0) 04:52:56 executing program 1: socketpair(0xf, 0x6, 0x64, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$IP_VS_SO_SET_EDIT(r0, 0x0, 0x483, &(0x7f0000000140)={0x76, @dev={0xac, 0x14, 0x14, 0xf}, 0x4e20, 0x1, 'lc\x00', 0x20, 0x3, 0x3d}, 0x2c) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x4000, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:52:56 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x800000000000000, 0x10000) 04:52:56 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x4, @dev={0xfe, 0x80, [], 0xe}, 0x2f}, 0x1c) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0x9}, 0x1c) sendmsg(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480), 0x0, &(0x7f0000000140)}, 0xc100) sendto$inet6(r1, &(0x7f0000000200)="c48a3b3097433a5095b38f856af8fd7fad9f8234c0895448", 0x18, 0x0, 0x0, 0x0) 04:52:56 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:56 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) recvmmsg(r0, &(0x7f0000001e80)=[{{0x0, 0xfffffdd7, &(0x7f0000000540)=[{&(0x7f0000000140)=""/78, 0x4e}], 0x1, &(0x7f0000000040)=""/45, 0x2d}}], 0x1, 0x0, &(0x7f0000001f80)={0x77359400}) r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x13) write$eventfd(r1, &(0x7f0000000300)=0x3, 0xfffffffffffffd52) sendmmsg$unix(r0, &(0x7f0000000340), 0x492492492492a59, 0x0) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x200000, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') r4 = semget$private(0x0, 0x0, 0x1) semctl$IPC_INFO(r4, 0x3, 0x3, &(0x7f0000000340)=""/225) sendmsg$IPVS_CMD_GET_SERVICE(r2, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000004}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x3c, r3, 0x8, 0x70bd29, 0x25dfdbff, {0x4}, [@IPVS_CMD_ATTR_DAEMON={0x28, 0x3, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip_vti0\x00'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x5}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4}, 0x40000) 04:52:56 executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x6, 0x4, 0x6, 0x2, 0x0, 0x1}, 0x2c) bpf$MAP_UPDATE_ELEM(0x4, &(0x7f00000001c0)={r0, &(0x7f0000000180), &(0x7f00000002c0)}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000140)={r0, &(0x7f0000000000)="44fbb338f989cd395a9089e51781705747780b58f1001c6d796708fa1a636dac5d009faf0761f1e3f35aadf410eab402fecb846cdbb3a239b3276b8e07bded53ad89b07cf07b1555409b53a6c24c1cd40bd7abfe802dc67d3e5d7ab99f0687495327832f76b4e8c73da8df73d6dbaa0f49"}, 0x10) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x8040, 0x0) r2 = getegid() ioctl$TUNSETGROUP(r1, 0x400454ce, r2) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000000180)=""/6) ioctl$TIOCMSET(r1, 0x5418, &(0x7f00000000c0)=0x8) 04:52:56 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x60000000000000, 0x10000) 04:52:56 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x400, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") bpf$MAP_CREATE(0x0, &(0x7f0000214fd4)={0x8, 0x4, 0x4, 0x801, 0x0, 0xffffffffffffffff, 0x0, [0x305f, 0xa]}, 0x21b) ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f0000000100)={0x40, 0x1, 0x400, 0x2}) r2 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r3, 0x6, 0x1, &(0x7f0000000040)={0x3b, 0x5, 0x1, 0x3f, 0x40, 0x5, 0x3}, 0xc) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000180)=0x0) ptrace$setsig(0x4203, r4, 0x2, &(0x7f00000001c0)={0x12, 0xffff, 0x44, 0x9}) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) 04:52:56 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8006, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:56 executing program 5: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0x3, 0x4, 0x4, 0x1, 0x0, 0x1}, 0x2c) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0xd, 0x1, 0x4, 0x8001, 0x0, r0}, 0x2c) r2 = dup3(r0, r1, 0x80000) ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r2, 0xc0a85322, &(0x7f00000000c0)) 04:52:56 executing program 3: r0 = socket$inet6(0xa, 0x1000000000001, 0x0) ioctl(r0, 0x8912, &(0x7f00000001c0)="025cc83d6d345f8f7620fa") r1 = syz_open_dev$ndb(&(0x7f00000000c0)='/dev/nbd#\x00', 0xffffffffffffffff, 0x4000) fcntl$dupfd(r1, 0x4, r1) ioctl$BLKBSZSET(r1, 0x1261, &(0x7f0000000040)) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000000)={0x0}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000100)={r2, @in6={{0xa, 0x4e21, 0x5, @mcast2={0xff, 0x2, [], 0x1}, 0x1}}}, 0x84) 04:52:56 executing program 5: shmat(0x0, &(0x7f0000ffe000/0x1000)=nil, 0x6fff) clone(0x0, &(0x7f0000000180), &(0x7f0000000240), &(0x7f0000000140), &(0x7f0000000280)="ff7f0000b0a0") r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300)='/dev/uinput\x00', 0x40, 0x0) ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0x7fffffff) socket$packet(0x11, 0x3, 0x300) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x2000, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000100)=@assoc_value={0x0}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000001c0)={r2, 0x6}, &(0x7f0000000200)=0x8) ioctl$BLKBSZSET(r1, 0x40081271, &(0x7f0000000040)=0x14000000) ustat(0x0, &(0x7f0000000080)) 04:52:56 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x0, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:56 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xffffffff00000000, 0x10000) 04:52:56 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x2002, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:56 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) r2 = gettid() ioctl$sock_FIOSETOWN(r1, 0x8901, &(0x7f0000000040)=r2) 04:52:56 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/ip_vs\x00') ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000700)={{0x2, 0x7, 0x7fffffff, 0x2, '\x00', 0x100}, 0x0, [0x4, 0x5, 0x7ff, 0x7f, 0x4, 0x66b2, 0x9, 0x77ba00000, 0x4, 0x3, 0x6, 0x3, 0x5, 0x800, 0x8, 0x1, 0x84a, 0x1f, 0x1, 0x81, 0x0, 0x40, 0x1, 0x6, 0x0, 0x8ef, 0x81, 0x5, 0x3, 0x7fffffff, 0x3, 0x2, 0xf1, 0x2, 0x7, 0x7, 0x0, 0x7fffffff, 0x101, 0x7d4323fb, 0xb9, 0x9, 0x7, 0x9, 0xb3, 0x0, 0x18, 0x1, 0x9, 0x4, 0x8001, 0x8001, 0x0, 0x0, 0x10000, 0x76, 0x2, 0x0, 0x6bf27384, 0x5, 0x5, 0x1ff, 0x0, 0x5c610582, 0xffffffff, 0x6, 0xff4, 0x2cde, 0x0, 0x2, 0x20, 0xf8, 0x7, 0x5, 0x0, 0x3, 0x4, 0x8, 0x2fea1e14, 0x3, 0x1e5, 0x0, 0x7, 0x2, 0x2, 0x10000, 0x0, 0x1f, 0xfffffffffffffc00, 0x7cf90b35, 0x3ff, 0x1, 0x3f55ce28, 0xf779, 0x0, 0xc2d, 0x5, 0xca, 0x4, 0x7f, 0x59b, 0x5, 0x66d4, 0x80000000, 0x2, 0x1000, 0x11b9, 0x6, 0x6, 0x1, 0x400, 0x0, 0x80000001, 0x40, 0x48000, 0x80000000, 0x10000, 0x6, 0x6, 0x5, 0x10001, 0x5, 0xdc0, 0xffffffff, 0x20, 0x7fff, 0x8], {0x0, 0x1c9c380}}) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r2, 0x0, 0x30, &(0x7f00000002c0)=ANY=[@ANYBLOB="080000000000000002004e24e0000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000700000002004e2200000c1c000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e000000000000000000000000000000000000000002004e20ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e200000513b00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e21ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e23e000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e22ac1414aa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000008000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000002004e237f0000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x410) r3 = socket(0x400020000000010, 0x2, 0x0) write(r3, &(0x7f0000000000)="1f00000056000d6dfcffff05bc0203030701ff2104173f8100000002030039", 0x1f) 04:52:56 executing program 5: r0 = socket$rds(0x15, 0x5, 0x0) pwritev(r0, &(0x7f0000001180)=[{&(0x7f0000000080)="aec322e0f3d09d3c76bcd93508e92700c57571d06abd956d8e471d946905151f0d645d533493e940af77d1b4b0f0b5ab089743706f5931238e7508c0a9af4370616c81c603d44c94d3b4f7401186f8efa85420190a4fe41166c19c138d6c795259395a7281d16f8d04bb3ec2dc63fd96f2e5b521eb4e5c5e9fed45ca2b677199faae67283d98034dc11575f7d4e4245d9b5b6014fed8fa5ad5e672", 0x9b}, {&(0x7f0000000140)}, {&(0x7f0000000180)="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", 0x1000}], 0x3, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000001240)='/dev/sequencer\x00', 0x80, 0x0) getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000001600)=@assoc_value={0x0, 0x7}, &(0x7f0000001640)=0x8) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000001680)={r2, 0x80000001, 0x20}, &(0x7f00000016c0)=0xc) r3 = memfd_create(&(0x7f00000011c0)='erspan0\x00', 0x3) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001200)={&(0x7f0000001280)="000000616363657363e200000000000000000000545c91e0fef0b13d2b4eeaf16950aa00", r3}, 0xfffffffffffffd76) unshare(0x40000000) r5 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSARP(r5, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, {0x0, @link_local={0x1, 0x80, 0xc2}}, 0x0, {0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 'erspan0\x00'}) ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000001540)={0x4, 0x0, [{0x1, 0xc2, &(0x7f00000012c0)=""/194}, {0x0, 0xac, &(0x7f00000013c0)=""/172}, {0x103000, 0x83, &(0x7f0000001480)=""/131}, {0x4, 0x3, &(0x7f0000000140)=""/3}]}) [ 166.943332] IPVS: ftp: loaded support on port[0] = 21 04:52:56 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000340)='/dev/binder#\x00', 0x0, 0x800) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000180)=ANY=[@ANYRES32=0x0, @ANYBLOB="c000000073e1630d930a94cd69f877f2014b600e761ef90f74ffbaadf9e8677121aecfe194f0a469713381ac39319fe20f1ee4ea4e3d13474c1211a42a70fd29a97f2a02b1d5407d4c19d5b69a4d662a7f2fe615b90948c6d736fb879607148288541744ead66fb53feb9edc1b773056c878be46e8d6d10a2e2838fdae609f5a94c1c21f90f83fd01c7c94ad7e03326035b3886dd1dd22a8c11fa6f18bf14d674a7a77336f1b32dd8f1679c4f7fd6e82a94888204e8bee1a9607f09ebf1a2c70fb4e1023"], &(0x7f0000000040)=0xc8) getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000100)={r2, 0x2, 0x800, 0x10001}, &(0x7f0000000280)=0x10) remap_file_pages(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000000, 0xffffffff, 0x100) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) [ 167.022734] IPVS: ftp: loaded support on port[0] = 21 04:52:57 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d34") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:57 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x400000000000000, 0x10000) 04:52:57 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$vsock_stream(0x28, 0x1, 0x0) getresuid(&(0x7f0000000100)=0x0, &(0x7f0000000140), &(0x7f0000000200)) getresgid(&(0x7f0000000300), &(0x7f0000000380), &(0x7f0000000340)=0x0) fchown(r0, r1, r2) getsockname(r0, &(0x7f0000000040)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @remote}}}, &(0x7f00000000c0)=0x80) 04:52:57 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x4002, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:57 executing program 5: socketpair(0x1e, 0x1, 0x0, &(0x7f00000000c0)={0x0, 0x0}) shutdown(r1, 0x2) recvfrom$llc(r0, &(0x7f0000000000)=""/45, 0x2d, 0x0, 0x0, 0x0) fcntl$dupfd(r1, 0x406, r1) link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') write$9p(r0, &(0x7f0000000100)="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", 0x110) getresgid(&(0x7f0000000240)=0x0, &(0x7f0000000280), &(0x7f00000002c0)) setfsgid(r2) 04:52:57 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001780)={"73797a5f74756e00000000000100", 0x0}) sendmsg$nl_route(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000001400090100000180000000000a000000", @ANYRES32=r1, @ANYBLOB="080008008402000014000100fe8000000000000000000000000000aa"], 0x34}, 0x1}, 0x0) r2 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x20, 0x40000) connect$pptp(r2, &(0x7f00000000c0)={0x18, 0x2, {0x3, @rand_addr=0x2ac1}}, 0x1e) 04:52:57 executing program 1: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x202000, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000100)={0xaa, 0x4, 0x524a97fd, 0x0, 0xe61, 0x3, 0x8001, 0x100000000, 0x414, 0x1, 0x9, 0x1, 0x0, 0xfffffffff4a092fd, 0x1854, 0xf9, 0x5, 0xffffffff00000001}) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000380)={0xc, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0b630000056304400240bda57b8cfa8e27bbe6e75deddd5d6200007e3fa6f97b9eae36012c68d334781bb95bf196fee62a2da712c6ac7ca575042521f21488cf639fb226ef27b3dd95112593bfcacf140099a4692b000d9f19114b4b9afbf277da9441a70b193cfbd5dbe786773e46dfa1dd89d5b7cb972ff942c88464a93fa2778a340f7e969b459b47057c18f8f288be1ce29f2ca483045cabd2c86f353ca7a655d4d5e8a6af2ca2e44a2cc1795a1c2d9c9b9e5e288ec58a9a9dbd4bd98c79b25f0a39290ad5cc2ad2090785a2dab7d683ba175015a8d36a683cd9f26cf5c1cd"], 0xc6, 0x0, &(0x7f0000000280)="50274e230a8ae375247e2c38d53894e1d328757990cdca3fdce6e007b0847a38b54aee46a722c94af35e86a35696e4a68c71eb62bce81ffc85ff43c2164b21cd67d7e9493a69db0ff924e531a9fb3a7b3b5d46da549f34b70895b9a878ab601b7e657d1d635df695c4fa9b402eca7e222aef591837c615dd6eab68e0e894f62774efe76f51cb6ce062fa7647b818f35c6ebb5a62a8496aab78894e6bb5aaecad1a8c85a5d35879bd13af105290815c219b3b1258f125f7be80e72f25832d18c9e75488ac57c5"}) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0}, &(0x7f00000001c0)=0xc) sched_getparam(r2, &(0x7f0000000200)) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) r3 = request_key(&(0x7f0000000240)='trusted\x00', &(0x7f00000004c0)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000500)='/dev/ptmx\x00', 0xfffffffffffffffe) r4 = request_key(&(0x7f0000000540)='user\x00', &(0x7f0000000580)={0x73, 0x79, 0x7a, 0x0}, &(0x7f00000005c0)='/dev/ptmx\x00', 0xfffffffffffffff9) r5 = add_key(&(0x7f0000000600)='rxrpc_s\x00', &(0x7f0000000640)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000680)="3668be904df28e33d3bb77a5ad72ad957ed036f4ac20ae13ac8e9bbd2cfcf345aee172336cd428a1a323596208966d005809465de243f4f8c8d6b725feb2d9394d79b623752be34bd26ef4d63885484d89f7d36e44e6c393bf518f5f8e1c70b5f6f11a340d77ab79d63c9f92ae112288ae065950205bf91be98b6cf60c6db9a2d0f2328204b5ffb0ec", 0x89, 0xfffffffffffffff8) keyctl$dh_compute(0x17, &(0x7f0000000740)={r3, r4, r5}, &(0x7f0000000780)=""/173, 0xad, &(0x7f0000000980)={&(0x7f0000000840)={'sha512-generic\x00'}, &(0x7f0000000880)="959cff9c072bb551cb37c079d24535329ead1bfc11d913da9db44c2fdabba50b3e9865037c07bdeb18ebbd77aa73f791e994e3328acb9db58f1c57085b195928e3405c004d51f2a373bd4e62df4e7679bd3867ab5f815028a896eaf323d667095f3474674e344c763a9366e7d0aba62ea6e41daeaeb995d65a344616e02a803e29238dcd43008ddc6f38fb3c3b6775821a1ada51a7fb0b511b929393e1417cb28b87d613f9d4a7f493e3705dccfc4ed3df5add06e0603f639f1aa1e870f360f75e07e9e7ffb0e7fa22227bd5b852115a2fa2", 0xd2}) 04:52:57 executing program 3: bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x0, 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="d62ae2820002000097bfcc92462c2a3c2dead7379a6eeac8a7fbaa353d7778e1e6526c9ceb7165d9b24f90d7c4288c1e0d933a1b3f32ff09f8a8c4c44fb03866b4849217aac98dc0fdaf791c29631846b7b518fdb6597ed60288a4693e15df72473f23000216bae8c7c5c3dbdebcb42183c7c898ffb68cde2e81c04e99c2a5ac9d42d98309230ffc39e3788d936dc8d6f8b6159b0c0eed851be942ad9491ac91ca282b64f3d8687f7c1dd77c29f223dbd7f82cd2cae8776da5b582d16888936735a55d1fe58316bf01893233caa948d28f0af5c500"], &(0x7f0000003ff6)='syzkaller\x00', 0x0, 0xc3, &(0x7f0000009f3d)=""/195}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x0, 0x5f}, [], {0x95}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) 04:52:57 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$void(r0, 0xc0045c7f) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x8000, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) [ 167.550946] binder: 11279:11283 ioctl c0045c7f 0 returned -22 [ 167.579191] binder: 11279:11285 ioctl c0045c7f 0 returned -22 04:52:57 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x4006, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:57 executing program 5: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x5, 0xc0000) ioctl$sock_SIOCADDDLCI(r0, 0x8980, &(0x7f0000000040)={'ipddp0\x00', 0x7ff}) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) ioctl(r1, 0x4000008912, &(0x7f00000000c0)="295ee1311f16f477671070") r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) setsockopt$llc_int(r2, 0x10c, 0x8, &(0x7f0000000200), 0x4) 04:52:57 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x64, 0x10000) 04:52:57 executing program 2: r0 = socket(0x10, 0x8000003, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0x100000001, 0x121100) ioctl$VT_OPENQRY(r1, 0x5600, &(0x7f0000000140)) sendmsg$nl_generic(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="280000001a0001cb26401e00000000000200000014000000ff020000000000010000000000000000"], 0x28}, 0x1}, 0x0) 04:52:57 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x102c, 0xfffffffffffffffd}, 0x2c) bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0xa, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x201a7fa6, 0x0, 0x1}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x1, 0x3bc, &(0x7f00001a7f05)=""/251}, 0x2e) socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000080)=@raw={'raw\x00', 0x9, 0x3, 0x2f8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x228, 0xffffffff, 0xffffffff, 0x228, 0xffffffff, 0x3, &(0x7f0000000040), {[{{@uncond, 0x0, 0xc8, 0x108}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x7, 0x1, "c9cb3e1e294bd5d4baffa268b68519436e7171f2ccc3431a64f2aa3dd0e6"}}}, {{@uncond, 0x0, 0xf0, 0x120, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x9}}]}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0xc3, 0x8aaa}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x358) 04:52:57 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x0, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:57 executing program 1: r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:57 executing program 5: geteuid() r0 = socket$key(0xf, 0x3, 0x2) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$key(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}, 0x1}, 0x0) 04:52:57 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r1, 0x4018aee1, &(0x7f0000000100)={0x0, 0x7ff, 0x80000001, &(0x7f0000000040)=0xa551}) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:57 executing program 2: syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x0, 0x400000) r0 = socket(0x40000000015, 0x5, 0x0) setsockopt(r0, 0x114, 0xa, &(0x7f0000000000), 0x0) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000040)={'veth0_to_team\x00', 0x5}) 04:52:57 executing program 3: mknod(&(0x7f0000000100)='./file0\x00', 0x1040, 0x0) open$dir(&(0x7f0000000080)='./file0\x00', 0x103001, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000000280)) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x2000, 0x0) ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="0200000000000000e309000000000000698a00cebf8d3e6fefa5ed39df7bbbf0aa93a1da0a000000000000070000000000000083c21cd1125eb10f48671bd0e1fd3230b1497d552c1c11f6cb257438e8ca2ea86a2fb74b123aca271dad2d47e1f607de608ee59f76aad59155d6b104bd88db106a7ce989d53ec232aa0a33c051bb1b6b99206d9bc2b7ef983fd253b093"]) unlink(&(0x7f0000000140)='./file0\x00') tkill(r0, 0x1000000000016) 04:52:57 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d34") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:57 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xc003, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:57 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8, 0x10000) 04:52:58 executing program 2: r0 = syz_open_dev$dspn(&(0x7f0000000180)='/dev/dsp#\x00', 0x1, 0x0) ioctl$int_in(r0, 0x800000c0045009, &(0x7f0000000040)=0x400000000000008) close(r0) 04:52:58 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) r1 = fcntl$getown(r0, 0x9) ioctl$TIOCSCTTY(r0, 0x540e, 0x16b2) ptrace$peek(0x1, r1, &(0x7f0000000040)) syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) pselect6(0x2d, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(0xffffffffffffffff, 0x40046208, 0x0) 04:52:58 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x32, &(0x7f0000000080)=0xfffffffffffffff8, 0x4) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x2a000, 0x0) setsockopt$bt_BT_SNDMTU(r1, 0x112, 0xc, &(0x7f0000000040)=0x9, 0x2) 04:52:58 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x2000000, 0x10000) 04:52:58 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x6000, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:58 executing program 5: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1=0xe0000001}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfdffffff}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1=0xe0000001}}]}, 0x50}, 0x1}, 0x0) getpeername(r0, &(0x7f00000000c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @local}}}, &(0x7f0000000140)=0x80) accept$packet(r1, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000400)=0x14) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000440)={'team0\x00', r2}) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000180)={0x0, @in6={{0xa, 0x4e23, 0x3dd112d, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}}}}, &(0x7f0000000240)=0x84) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000280)={r3, 0x15b}, &(0x7f00000002c0)=0x8) accept(r0, &(0x7f0000000300)=@hci, &(0x7f0000000380)=0x80) 04:52:58 executing program 2: r0 = socket$inet6(0xa, 0x9000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair$unix(0x1, 0x5, 0x0, &(0x7f000001a000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f000039a000)=[{0xb1, 0x0, 0x0, 0xffffffffffffffff}, {0x6}]}, 0x10) sendmmsg(r1, &(0x7f0000003040)=[{{&(0x7f00000012c0)=@can={0x1d}, 0x80, &(0x7f0000001840)}}, {{&(0x7f00000018c0)=@ipx={0x4, 0x0, 0x0, "982a5c276750"}, 0x80, &(0x7f0000002f80)}}], 0x2, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0xfffffffffffffff8, 0x400) ioctl$RNDADDENTROPY(r3, 0x40085203, &(0x7f0000000080)={0x10001, 0xff, "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"}) 04:52:58 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:58 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) modify_ldt$read_default(0x2, &(0x7f00000001c0)=""/40, 0x28) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) symlink(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file0\x00') r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) ioctl$KVM_GET_XCRS(r1, 0x8188aea6, &(0x7f0000000180)={0x3, 0x48c, [{0x7, 0x0, 0xc8c}, {0x1f, 0x0, 0x5d69}, {0xffffffff00000000}]}) 04:52:58 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xa005, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:58 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x4000000000000000, 0x10000) 04:52:58 executing program 5: syz_mount_image$ntfs(&(0x7f0000000080)='ntfs\x00', &(0x7f00000000c0)='./file0\x00', 0x8001, 0x6, &(0x7f0000001480)=[{&(0x7f0000000140)="741a57a7252a1e3ce320a06cd7b63a05c3266672e5b5390c9b35a6f21353b0632079fd9933206fbb79d87fbcdd8c3939d864615bd7bcd98183f0b3b193a511077985785ee019a91a44d8e4c7f83cc87655ce304ea5947f62978828a44183972a6458f0435e46e634091a628bdd748e44ceab845a1da7a270b2f2f06db006c12d9b9932f18c64be022fe61272c0", 0x8d}, {&(0x7f0000000200)="fe25ec683114e7901534414bf636bcef89b9f32a0351be9faea839ad78be529d82c4f776af5c2a", 0x27, 0xffffffffffffff8c}, {&(0x7f0000000240)="d877ae5d371ebd2ec09738d323e3a9637837f274a4fbec9ca0e634774f4023191854daff5276192859c5953afc592af7edd917cc4abcbc2e0137", 0x3a, 0x400}, {&(0x7f0000000280)="34d4bb3140212a204c4d0310914ee130b3b834fe2ac73d79f178cbc3c844f97c7a6340e036634320aade230629d29d65756ab2a6ba81c6fa962ab33cdf5472799b70f32525ce6192ad7ba38ebe90f1cbe055d93a16248aedf5bae0f55a0ef2a5a8be40a5bd77f3fa3e275c217b10d297ea593a8cdf9e1f3bd33b9227eae1d7887e81625e2e06e4e40d268237fa24619aa3e5efe2564b3b45f7732de852167bae82fb02cdca72d674d18ae779a1c0511631475cd161cbc537bd5f0606e5cd7874a4f178dd27", 0xc5, 0x8}, {&(0x7f0000000380)="9bc2799644b13d8a7939edc7f13cc3f5b23f226edbf13c173d7ec5c16b97472027efc8067215d2372cd5573fada88136571352652e72db63c9da503538c1074dfddd80eb93ca592630002dfd698b230f1d6c187cfba0bfe9d1179a6aa5bad650c990835eab09a49907ddecc193cd8442ce38354adfcebf0dc52c7a454e5a49d6d5494498b33613fc8ec73bad9e933af0bee666b61cea1d38fada82fc4127fa7d065ccdf3a8dfb459754baf8b47aba147d61f1543f307a6d3130c9b7bab740c14f78945b89462ff055311df998af614a008b058057a44bd2ac7c61d44770e6ec9fb19a1bc102de4928af66eb3", 0xec, 0x80000000}, {&(0x7f0000000480)="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", 0x1000, 0x2}], 0x400, &(0x7f0000001540)={[{@uid={'uid', 0x3d, [0x37]}, 0x2c}, {@case_sensitive_no={'case_sensitive=no', 0x3d, [0x34, 0x39, 0x37, 0x3f, 0x3f, 0x3d, 0x33, 0x3d, 0x35, 0x37]}, 0x2c}, {@errors_recover='errors=recover', 0x2c}, {@nls={'nls', 0x3d, 'cp857'}, 0x2c}, {@case_sensitive_no={'case_sensitive=no', 0x3d, [0x3d, 0x39, 0x37, 0x3f, 0x0]}, 0x2c}, {@utf8='utf8', 0x2c}, {@errors_recover='errors=recover', 0x2c}]}) syz_mount_image$ntfs(&(0x7f0000000000)='ntfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000100)=ANY=[@ANYRESHEX]) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00000016c0)='/dev/vsock\x00', 0x0, 0x0) timerfd_gettime(r0, &(0x7f00000017c0)) accept4$packet(r0, &(0x7f0000001700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000001740)=0x14, 0x800) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000015c0)='/dev/vga_arbiter\x00', 0x200b00, 0x0) getpeername$unix(r1, &(0x7f0000001600), &(0x7f0000001680)=0x6e) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000001780)={0x9, 0x1}) [ 168.809628] ntfs: (device loop5): parse_options(): The case_sensitive option requires a boolean argument. [ 168.823420] Unknown ioctl 19277 04:52:58 executing program 3: r0 = syz_open_dev$vcsa(&(0x7f0000e27000)='/dev/vcsa#\x00', 0x2, 0x1) write(r0, &(0x7f0000214ffb)="53000000ff", 0x5) write(r0, &(0x7f0000000040)="b8", 0x1) sync() 04:52:58 executing program 2: r0 = memfd_create(&(0x7f0000000040)='b\n\x00\x00\x00', 0x4) ioctl$EVIOCGVERSION(r0, 0x80044501, &(0x7f0000000140)=""/180) r1 = socket$inet6(0xa, 0x1, 0x0) ioctl(r1, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") timer_create(0x3, &(0x7f0000000000)={0x0, 0x30}, &(0x7f0000000080)=0x0) timer_settime(r2, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x0, 0x989680}}, &(0x7f0000000200)) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xe, 0x5011, r0, 0x0) 04:52:58 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000200)='/dev/uinput\x00', 0xfffffffffffffffc, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000040)={0x0, 0x6}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000180)=@assoc_id=r2, 0x4) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:52:58 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x6006, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:58 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x88000000, 0x10000) 04:52:58 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000000)={0x2004}) rt_sigaction(0x400000028, &(0x7f0000000040)={0x0, {}, 0xfffffffffffffffd, 0x3ff}, 0x0, 0x8, &(0x7f00000000c0)) 04:52:58 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d34") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:58 executing program 2: fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f0000000080)={0x0, 0x0}) perf_event_open(&(0x7f00000007c0)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, r0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000040)) socket$nl_route(0x10, 0x3, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000009c0)={{{@in=@dev, @in6=@dev}}, {{@in6=@dev}, 0x0, @in6}}, &(0x7f0000000440)=0xa0) memfd_create(&(0x7f0000003ffa)='w0\x00\x00\x00', 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000a8eff8)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(r1, 0x1, 0x7, &(0x7f0000ac5000), 0x4) fcntl$addseals(0xffffffffffffffff, 0x409, 0x8) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000005c0), &(0x7f0000000600)=0xc) alarm(0x7fffffff) 04:52:59 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000040)={0xffffffffffffffff}) setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000080)={0x2b, @broadcast=0xffffffff, 0x4e21, 0x4, 'sh\x00', 0x30, 0x3, 0x32}, 0x2c) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r2, 0x40045431, &(0x7f00003b9fdc)) r3 = syz_open_pts(r2, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000fd0ffc)=0x3) ioctl$TCSETAF(r3, 0x541f, &(0x7f0000000000)) 04:52:59 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x3000000, 0x10000) 04:52:59 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x80003, 0x0) socketpair(0x1d, 0x3, 0x4, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f00000000c0)={'irlan0\x00', 0x3}) write$P9_RLERROR(r1, &(0x7f0000000100)={0x15, 0x7, 0x2, {0xc, '/dev/uinput\x00'}}, 0x15) r2 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000200)=@security={'security\x00', 0xe, 0x4, 0x500, 0xffffffff, 0x290, 0x0, 0x388, 0xffffffff, 0xffffffff, 0x468, 0x468, 0x468, 0xffffffff, 0x4, &(0x7f00000001c0), {[{{@uncond, 0x0, 0x230, 0x290, 0x0, {}, [@common=@set={0x40, 'set\x00', 0x0, {{0x2, [0x0, 0x4, 0x3ff, 0x101, 0x9a, 0x8], 0x0, 0x5}}}, @common=@inet=@policy={0x158, 'policy\x00', 0x0, {[{@ipv4=@rand_addr=0x4, [0xffffffff, 0xff000000, 0xffffffff], @ipv6=@remote={0xfe, 0x80, [], 0xbb}, [0xff, 0xff0000ff], 0x4d3, 0x3505, 0x84, 0x1, 0x8, 0xa}, {@ipv6=@loopback={0x0, 0x1}, [0xff000000, 0x0, 0xff0000ff, 0xff], @ipv6=@ipv4={[], [0xff, 0xff], @rand_addr}, [0x0, 0xffffffff, 0xff, 0xffffffff], 0x4d6, 0x3505, 0x87, 0x1, 0x16, 0x2}, {@ipv6=@local={0xfe, 0x80, [], 0xaa}, [0xffffff00, 0xff, 0xff000000, 0xffffffff], @ipv6=@mcast1={0xff, 0x1, [], 0x1}, [0xffffffff, 0xff000000, 0xff, 0xffffffff], 0x4d5, 0x3507, 0x29, 0x1, 0x1d, 0x10}, {@ipv4=@broadcast=0xffffffff, [0x0, 0xffffff00, 0xffffffff], @ipv4=@remote={0xac, 0x14, 0x14, 0xbb}, [0xff000000, 0x0, 0x0, 0xffffffff], 0x4d3, 0x3501, 0xac, 0x0, 0x16, 0x8}], 0x1, 0x1}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4, [0xffffffff, 0x0, 0xffffff00, 0xffffffff], 0x4e20, 0x4e20, 0x4e22, 0x4e23, 0x8, 0x7, 0x4, 0x967, 0x7}}}, {{@ip={@loopback=0x7f000001, @remote={0xac, 0x14, 0x14, 0xbb}, 0xffffffff, 0xffffff00, 'teql0\x00', 'dummy0\x00', {}, {0xff}, 0x88, 0x0, 0x4}, 0x0, 0x98, 0xf8}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x11}, 0x9, 0xf, [0x27, 0xd, 0x20, 0xa, 0x28, 0x13, 0xb, 0x25, 0x19, 0x32, 0x29, 0x17, 0x20, 0x3f, 0x11, 0x26], 0x2, 0x0, 0x6}}}, {{@ip={@local={0xac, 0x14, 0x14, 0xaa}, @broadcast=0xffffffff, 0xffffffff, 0xff000000, 'bridge_slave_0\x00', 'ipddp0\x00', {0xff}, {0xff}, 0x62, 0x3}, 0x0, 0xb8, 0xe0, 0x0, {}, [@common=@socket0={0x20, 'socket\x00'}]}, @common=@unspec=@CLASSIFY={0x28, 'CLASSIFY\x00', 0x0, {0x1000}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x560) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd, 0x0, 0x0, 0xffffffffffffffff}, &(0x7f0000768000)={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}, &(0x7f0000086000)={0x0, 0x0, 0x0, 0x0, 0x10000000000000, 0x9, 0x0, 0x81}, &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f0000000180), 0x8}) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) [ 169.213135] can: request_module (can-proto-4) failed. [ 169.244087] can: request_module (can-proto-4) failed. 04:52:59 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:52:59 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xa003, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x101000, 0x0) ioctl$sock_inet_SIOCDELRT(r3, 0x890c, &(0x7f0000000100)={0xff, {0x2, 0x4e20, @multicast1=0xe0000001}, {0x2, 0x4e20, @broadcast=0xffffffff}, {0x2, 0x4e20, @rand_addr=0x5}, 0x200, 0x3, 0x6fc3, 0x80, 0x32, 0x0, 0xffffffff80000000, 0x9, 0x1}) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000001c0)) ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000000)={0x3ff, 0x5, 0xbeb, 0x641, 0x275}) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000340)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x8}]}}) ftruncate(r1, 0x80) r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cpu.stat\x00', 0x0, 0x0) openat$cgroup_ro(r4, &(0x7f0000000080)='cpuacct.usage_user\x00', 0x0, 0x0) 04:52:59 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000002c80)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vcs\x00', 0x40002, 0x0) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffff9c, 0x84, 0xe, &(0x7f0000000200)={0x0, 0x8, 0x0, 0xfffffffffffffff7, 0x3, 0x2, 0x4, 0x6, {0x0, @in={{0x2, 0x4e24, @multicast2=0xe0000002}}, 0x6, 0x1, 0x100000001, 0x0, 0x5}}, &(0x7f00000002c0)=0xb0) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000300)={r4, 0x40}, 0xc) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0xfffffffffffffffc}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fd7000/0x18000)=nil, &(0x7f0000002b40)=[@text64={0x40, &(0x7f0000002ac0)="66b839010f00d8460f0666baa000ec470ff5b671000000c421f913b24ea5f4b80f32f240dff066410f744de2400f01f848b801000000000000000f23c80f21f835000020000f23f8", 0x48}], 0x1, 0x0, &(0x7f0000002b80), 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f00000000c0)="266464f2f0806ead000f08c744240007000000c744240200980000c7442406000000000f011c24d0f0c4e1fc5a685866baa000ed66baf80cb8b14cb385ef66bafc0cb033ee0f20c035040000000f22c064f4c4e1781726", 0x57}], 0x1, 0x63, &(0x7f0000000180), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x200, 0x0) bind$vsock_stream(r5, &(0x7f0000000080)={0x28, 0x0, 0x2710, @hyper}, 0x10) ioctl$KVM_RUN(r2, 0xae80, 0x0) 04:52:59 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r1, 0xc0bc5351, &(0x7f0000000180)={0x5, 0x0, 'client0\x00', 0x1, "be77661e5f52f657", "fe4a97ae5cdd052a7f5a80788d9493453f1b387e097a6b7927803d706f0a5dc6", 0x401}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000000)={&(0x7f0000a00000/0x600000)=nil, 0x600000}, &(0x7f0000000100)=0x10) 04:52:59 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x6000, 0x10000) 04:52:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='fdinfo\x00') getsockname$llc(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000340)=0x10) ioctl$PPPOEIOCSFWD(r1, 0x4008b100, &(0x7f00000001c0)={0x18, 0x0, {0x1, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], 'irlan0\x00'}}) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$TUNSETSNDBUF(r2, 0x400454d4, &(0x7f0000000040)) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r5 = socket$pppoe(0x18, 0x1, 0x0) r6 = dup2(r2, r5) sendmsg$nl_generic(r6, &(0x7f0000000100)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x26600}, 0x8, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="f8000000ef4602002abd7000fbdbdf250a0000000c004d00ff010000000000000711d2d2abed26676c269b68f4c6f1baed6f9a52b0a6fb4f41a131964cc845e71504f2a938f84f07086a2b59692a9c99716ce88ffd4f36d29d546c121b8dfc0be74626795f143862eaffd57f2a32be1ef23caa102e99b474d5d2895a655bf9e508004b00", @ANYRES32=r5, @ANYBLOB="70008f008cd3a42cdf044d5ce1de3a986db573c53aca7872c9d1748928428a1c2ea9e8bdb8f72529f78f3c2e9c1b816e928324f8c7780c006e002000000000000000080087803b6c6a9f6d6df9e793b883ebb7c3ac82ca6d561fd0d424e5f4d09cc4cca25654e6bc272b91bcc09a1208134e284ded9957b6198a07e1d703f45c737af4f33fee1e89b376663d716c3e4a1bcad4a8a330bc21e1b12765816d1d12d75e8b5f9a2fa75c34ff7deb6ee1c23bc3517560de30796622d4393a5e2c1fbb90093c6f5eededc904b1c1e7e2457ac58c7bf6de22476500000000", @ANYRES32=r6, @ANYBLOB="14005600fe8000000000000000000000000000bb14004b00ff0100000000000000000000000000010000"], 0xf8}, 0x1, 0x0, 0x0, 0x4000}, 0x0) syz_kvm_setup_cpu$x86(r6, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000480)="b95d030000b800800000ba000000000f302e0f890038000066ba4000b840f90000efc4814d5863ab3e8197fd4300008fbc0000673667674d0fc79bc2c1f8640f323e400f0766baa000b000eeb9a5030000b89e4a0000ba000000000f30", 0x5d}], 0x1, 0x0, &(0x7f0000000500), 0x0) [ 169.737959] Unknown ioctl 35084 [ 169.756649] Unknown ioctl 35084 04:52:59 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) syz_open_dev$amidi(&(0x7f00000001c0)='/dev/amidi#\x00', 0x80000000, 0x400) ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f0000000180)) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0xe0000, 0x0) write$P9_RLOPEN(r2, &(0x7f0000000100)={0x18, 0xd, 0x2, {{0xa0, 0x2, 0x2}, 0x100000001}}, 0x18) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:52:59 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x32000, 0x10000) 04:52:59 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = syz_open_dev$audion(&(0x7f0000000200)='/dev/audio#\x00', 0x1, 0x80000) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$RTC_UIE_OFF(r1, 0x7004) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000080)=0x0) fcntl$setownex(r1, 0xf, &(0x7f00000000c0)={0x0, r4}) ioctl$KVM_ENABLE_CAP(r3, 0x4020ae46, &(0x7f0000000000)={0x0, 0x0, [0x0, 0x40000000000]}) 04:52:59 executing program 3: r0 = socket$inet_smc(0x2b, 0x1, 0x0) r1 = getpid() ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000000)=r1) r2 = socket$inet(0x15, 0x5, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r2, 0x114, 0x1300, &(0x7f0000000100)={0x2, 0x0, @broadcast=0xffffffff}, 0x10) 04:52:59 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f76") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:52:59 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x6005, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:52:59 executing program 5: r0 = creat(&(0x7f0000001140)='./file0\x00', 0x3) write$binfmt_script(r0, &(0x7f0000000000)={'#! ', './file0', [], 0xa}, 0xb) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000080)=0xd97, 0x4) close(r0) execve(&(0x7f0000000040)='./file0\x00', &(0x7f0000000200), &(0x7f0000000280)) 04:52:59 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000100)={0x800, 0x200, 0x81, 0x2, 0x2, 0x3, 0x9, 0x7fff, 0xe000000, 0x66c, 0x834, 0x9}) syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x2) [ 169.915560] syz-executor2: vmalloc: allocation failure: 8589934592 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 169.927304] syz-executor2 cpuset=syz2 mems_allowed=0 [ 169.932469] CPU: 0 PID: 11485 Comm: syz-executor2 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 169.940864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 169.950207] Call Trace: [ 169.952790] dump_stack+0x1c9/0x2b4 [ 169.956422] ? dump_stack_print_info.cold.2+0x52/0x52 [ 169.961603] ? kasan_check_read+0x11/0x20 [ 169.965739] ? do_raw_spin_unlock+0xa7/0x2f0 [ 169.970141] warn_alloc.cold.117+0xb7/0x1bd [ 169.974448] ? zone_watermark_ok_safe+0x3d0/0x3d0 [ 169.979276] ? _raw_spin_unlock_irq+0x27/0x70 [ 169.983752] ? finish_task_switch+0x1d3/0x870 [ 169.988226] ? finish_task_switch+0x18a/0x870 [ 169.992708] ? preempt_notifier_register+0x200/0x200 [ 169.997798] ? lock_repin_lock+0x430/0x430 [ 170.002025] __vmalloc_node_range+0x472/0x760 [ 170.006516] ? kvm_arch_create_memslot+0xc0/0x570 [ 170.011358] __vmalloc_node_flags_caller+0x75/0x90 [ 170.016272] ? kvm_arch_create_memslot+0xc0/0x570 [ 170.021098] kvmalloc_node+0xd7/0xf0 [ 170.024795] kvm_arch_create_memslot+0xc0/0x570 [ 170.029450] __kvm_set_memory_region+0x1d35/0x2e60 [ 170.034377] ? kasan_check_write+0x14/0x20 [ 170.038611] ? kvm_vcpu_block+0x1070/0x1070 [ 170.042916] ? check_same_owner+0x340/0x340 [ 170.047219] ? do_raw_spin_unlock+0xa7/0x2f0 [ 170.051612] ? rcu_note_context_switch+0x730/0x730 [ 170.056537] ? lock_acquire+0x1e4/0x540 [ 170.060507] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 170.066037] ? futex_wait_queue_me+0x553/0x830 [ 170.070605] ? refill_pi_state_cache.part.8+0x320/0x320 [ 170.075953] ? kasan_check_write+0x14/0x20 [ 170.080182] ? do_raw_spin_lock+0xc1/0x200 [ 170.084400] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 170.089920] ? lock_acquire+0x1e4/0x540 [ 170.093877] ? __might_fault+0x12b/0x1e0 [ 170.097922] ? lock_downgrade+0x8f0/0x8f0 [ 170.102056] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 170.107583] kvm_set_memory_region+0x2e/0x50 [ 170.111974] kvm_vm_ioctl+0x664/0x1d80 [ 170.115859] ? drop_futex_key_refs.isra.14+0x6d/0xe0 [ 170.120941] ? futex_wake+0x304/0x760 [ 170.124726] ? kvm_set_memory_region+0x50/0x50 [ 170.129316] ? kvm_dev_ioctl+0x18a/0x1b10 [ 170.133449] ? trace_hardirqs_on+0x10/0x10 [ 170.137668] ? do_futex+0x249/0x27d0 [ 170.141549] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 170.146201] ? __kernel_text_address+0xd/0x40 [ 170.150683] ? exit_robust_list+0x290/0x290 [ 170.154996] ? lock_acquire+0x1e4/0x540 [ 170.158957] ? __fget+0x4ac/0x740 [ 170.162393] ? lock_downgrade+0x8f0/0x8f0 [ 170.166529] ? lock_release+0xa30/0xa30 [ 170.170498] ? node_tag_get.constprop.17+0xa0/0xa0 [ 170.175416] ? __fget+0x4d5/0x740 [ 170.178851] ? ksys_dup3+0x690/0x690 [ 170.182543] ? do_fcntl+0x715/0x14f0 [ 170.186240] ? lock_downgrade+0x8f0/0x8f0 [ 170.190371] ? ksys_dup3+0x690/0x690 [ 170.194066] ? do_raw_write_trylock+0x1c0/0x1c0 [ 170.198815] ? kasan_check_write+0x14/0x20 [ 170.203038] ? kvm_set_memory_region+0x50/0x50 [ 170.207601] do_vfs_ioctl+0x1de/0x1720 [ 170.211469] ? f_modown+0x80/0x320 [ 170.214999] ? ioctl_preallocate+0x300/0x300 [ 170.219393] ? __fget_light+0x2f7/0x440 [ 170.223346] ? fget_raw+0x20/0x20 [ 170.226781] ? fget_raw+0x20/0x20 [ 170.230219] ? __x64_sys_futex+0x47f/0x6a0 [ 170.234433] ? do_futex+0x27d0/0x27d0 [ 170.238219] ? security_file_ioctl+0x94/0xc0 [ 170.242608] ksys_ioctl+0xa9/0xd0 [ 170.246044] __x64_sys_ioctl+0x73/0xb0 [ 170.249915] do_syscall_64+0x1b9/0x820 [ 170.253784] ? finish_task_switch+0x1d3/0x870 [ 170.258261] ? syscall_return_slowpath+0x5e0/0x5e0 [ 170.263172] ? syscall_return_slowpath+0x31d/0x5e0 [ 170.268081] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 170.273080] ? prepare_exit_to_usermode+0x291/0x3b0 [ 170.278077] ? perf_trace_sys_enter+0xb10/0xb10 [ 170.282730] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 170.287554] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 170.292726] RIP: 0033:0x455e29 [ 170.295894] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 170.315077] RSP: 002b:00007f204b9d3c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 170.322766] RAX: ffffffffffffffda RBX: 00007f204b9d46d4 RCX: 0000000000455e29 [ 170.330019] RDX: 0000000020000000 RSI: 000000004020ae46 RDI: 0000000000000016 [ 170.337268] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 170.344522] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 170.351780] R13: 00000000004bdcd2 R14: 00000000004cc518 R15: 0000000000000000 [ 170.359276] Mem-Info: [ 170.361754] active_anon:64377 inactive_anon:339 isolated_anon:0 [ 170.361754] active_file:7835 inactive_file:13802 isolated_file:0 [ 170.361754] unevictable:0 dirty:77 writeback:0 unstable:0 [ 170.361754] slab_reclaimable:11879 slab_unreclaimable:102193 [ 170.361754] mapped:75295 shmem:347 pagetables:997 bounce:0 [ 170.361754] free:1330753 free_pcp:488 free_cma:0 [ 170.395374] Node 0 active_anon:257508kB inactive_anon:1356kB active_file:31340kB inactive_file:55208kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:301180kB dirty:308kB writeback:0kB shmem:1388kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 233472kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 170.423756] Node 0 DMA free:15908kB min:164kB low:204kB high:244kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 170.449915] lowmem_reserve[]: 0 2827 6331 6331 [ 170.454522] Node 0 DMA32 free:2898076kB min:30100kB low:37624kB high:45148kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129292kB managed:2898884kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:804kB local_pcp:712kB free_cma:0kB [ 170.482416] lowmem_reserve[]: 0 0 3504 3504 [ 170.486758] Node 0 Normal free:2409028kB min:37316kB low:46644kB high:55972kB active_anon:257508kB inactive_anon:1356kB active_file:31340kB inactive_file:55208kB unevictable:0kB writepending:308kB present:4718592kB managed:3589004kB mlocked:0kB kernel_stack:5344kB pagetables:3988kB bounce:0kB free_pcp:1144kB local_pcp:504kB free_cma:0kB [ 170.516742] lowmem_reserve[]: 0 0 0 0 [ 170.520586] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 170.534301] Node 0 DMA32: 3*4kB (UM) 8*8kB (UM) 5*16kB (UM) 4*32kB (UM) 2*64kB (M) 2*128kB (M) 2*256kB (UM) 4*512kB (UM) 5*1024kB (UM) 3*2048kB (UM) 704*4096kB (M) = 2898076kB [ 170.550199] Node 0 Normal: 911*4kB (UME) 845*8kB (UME) 1409*16kB (UME) 1291*32kB (UME) 485*64kB (UME) 152*128kB (UM) 99*256kB (UME) 26*512kB (UM) 21*1024kB (UME) 4*2048kB (UM) 541*4096kB (UM) = 2409044kB [ 170.568558] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 170.577153] 21998 total pagecache pages [ 170.581141] 0 pages in swap cache [ 170.584593] Swap cache stats: add 0, delete 0, find 0/0 [ 170.589953] Free swap = 0kB [ 170.592975] Total swap = 0kB [ 170.596006] 1965969 pages RAM [ 170.599141] 0 pages HighMem/MovableOnly [ 170.603117] 340020 pages reserved 04:53:00 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) [ 170.615222] syz-executor2: vmalloc: allocation failure: 8589934592 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null) [ 170.626954] syz-executor2 cpuset=syz2 mems_allowed=0 [ 170.632129] CPU: 0 PID: 11487 Comm: syz-executor2 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 170.640534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 170.649883] Call Trace: [ 170.652489] dump_stack+0x1c9/0x2b4 [ 170.656125] ? dump_stack_print_info.cold.2+0x52/0x52 [ 170.661357] ? kasan_check_read+0x11/0x20 [ 170.665513] ? do_raw_spin_unlock+0xa7/0x2f0 [ 170.669923] warn_alloc.cold.117+0xb7/0x1bd [ 170.674245] ? zone_watermark_ok_safe+0x3d0/0x3d0 [ 170.679078] ? _raw_spin_unlock_irq+0x27/0x70 [ 170.683558] ? finish_task_switch+0x1d3/0x870 [ 170.688052] ? finish_task_switch+0x18a/0x870 [ 170.692532] ? preempt_notifier_register+0x200/0x200 [ 170.697620] ? lock_repin_lock+0x430/0x430 [ 170.701856] ? kasan_check_write+0x14/0x20 [ 170.706083] __vmalloc_node_range+0x472/0x760 [ 170.710575] ? kvm_arch_create_memslot+0xc0/0x570 [ 170.715405] __vmalloc_node_flags_caller+0x75/0x90 [ 170.720330] ? kvm_arch_create_memslot+0xc0/0x570 [ 170.725167] kvmalloc_node+0xd7/0xf0 [ 170.728868] kvm_arch_create_memslot+0xc0/0x570 [ 170.733526] __kvm_set_memory_region+0x1d35/0x2e60 [ 170.738439] ? kasan_check_write+0x14/0x20 [ 170.742678] ? kvm_vcpu_block+0x1070/0x1070 [ 170.747023] ? check_same_owner+0x340/0x340 [ 170.751349] ? do_raw_spin_unlock+0xa7/0x2f0 [ 170.755753] ? rcu_note_context_switch+0x730/0x730 [ 170.760667] ? lock_acquire+0x1e4/0x540 [ 170.764632] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 170.770156] ? futex_wait_queue_me+0x553/0x830 [ 170.774722] ? refill_pi_state_cache.part.8+0x320/0x320 [ 170.780072] ? kasan_check_write+0x14/0x20 [ 170.784288] ? do_raw_spin_lock+0xc1/0x200 [ 170.788504] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 170.794035] ? lock_acquire+0x1e4/0x540 [ 170.798002] ? __might_fault+0x12b/0x1e0 [ 170.802060] ? lock_downgrade+0x8f0/0x8f0 [ 170.806204] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 170.811732] kvm_set_memory_region+0x2e/0x50 [ 170.816136] kvm_vm_ioctl+0x664/0x1d80 [ 170.820011] ? pick_next_task_fair+0x997/0x17a0 [ 170.824685] ? kvm_set_memory_region+0x50/0x50 [ 170.829253] ? finish_task_switch+0x1d3/0x870 [ 170.833741] ? lock_downgrade+0x8f0/0x8f0 [ 170.837871] ? finish_task_switch+0x18a/0x870 [ 170.842363] ? do_futex+0x249/0x27d0 [ 170.846064] ? kasan_check_read+0x11/0x20 [ 170.850206] ? compat_start_thread+0x80/0x80 [ 170.854608] ? exit_robust_list+0x290/0x290 [ 170.858913] ? finish_task_switch+0x1d3/0x870 [ 170.863397] ? lock_acquire+0x1e4/0x540 [ 170.867352] ? __fget+0x4ac/0x740 [ 170.870797] ? lock_downgrade+0x8f0/0x8f0 [ 170.874933] ? lock_release+0xa30/0xa30 [ 170.879072] ? __schedule+0x884/0x1ed0 [ 170.882959] ? __fget+0x4d5/0x740 [ 170.886407] ? ksys_dup3+0x690/0x690 [ 170.890119] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 170.894695] ? kasan_check_write+0x14/0x20 [ 170.898930] ? do_raw_spin_lock+0xc1/0x200 [ 170.903160] ? trace_hardirqs_off+0xd/0x10 [ 170.907394] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 170.913011] ? kvm_set_memory_region+0x50/0x50 [ 170.917606] do_vfs_ioctl+0x1de/0x1720 [ 170.921564] ? ioctl_preallocate+0x300/0x300 [ 170.925962] ? __fget_light+0x2f7/0x440 [ 170.929928] ? __schedule+0x1ed0/0x1ed0 [ 170.933985] ? fget_raw+0x20/0x20 [ 170.937425] ? trace_hardirqs_on+0xd/0x10 [ 170.941556] ? __x64_sys_futex+0x47f/0x6a0 [ 170.945782] ? do_futex+0x27d0/0x27d0 [ 170.949569] ? security_file_ioctl+0x94/0xc0 [ 170.953962] ksys_ioctl+0xa9/0xd0 [ 170.957497] __x64_sys_ioctl+0x73/0xb0 [ 170.961387] do_syscall_64+0x1b9/0x820 [ 170.965256] ? finish_task_switch+0x1d3/0x870 [ 170.969735] ? syscall_return_slowpath+0x5e0/0x5e0 [ 170.974648] ? syscall_return_slowpath+0x31d/0x5e0 [ 170.979568] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 170.984582] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 170.989433] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 170.994606] RIP: 0033:0x455e29 [ 170.997776] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 04:53:01 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$unix(0x1, 0x1, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) setsockopt$sock_int(r2, 0x1, 0x22, &(0x7f000018effc)=0x1c, 0x4) r3 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x10000) r4 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0xf99, 0x101000) renameat(r3, &(0x7f0000000040)="e91f7189591e9233614b00", r4, &(0x7f00000000c0)="e91f7189591e9233614b00") bind$unix(r2, &(0x7f0000003000)=@file={0x1, "e91f7189591e9233614b00"}, 0xc) listen(r2, 0x0) connect$unix(r1, &(0x7f000066fff4)=@file={0x1, "e91f7189591e9233614b00"}, 0xc) accept4$unix(r2, &(0x7f000046f000)=@abs, &(0x7f0000937000)=0x8, 0x0) 04:53:01 executing program 3: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000040)="1a0345", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000004c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) accept4$bt_l2cap(r0, &(0x7f0000000000), &(0x7f0000000080)=0xe, 0x80800) [ 171.016912] RSP: 002b:00007f204b9b2c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 171.024783] RAX: ffffffffffffffda RBX: 00007f204b9b36d4 RCX: 0000000000455e29 [ 171.032046] RDX: 0000000020000000 RSI: 000000004020ae46 RDI: 000000000000001a [ 171.039308] RBP: 000000000072bf48 R08: 0000000000000000 R09: 0000000000000000 [ 171.046568] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 171.053843] R13: 00000000004bdcd2 R14: 00000000004cc518 R15: 0000000000000001 04:53:01 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x10, 0x10000) 04:53:01 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x4005, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x850, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$sndpcmc(&(0x7f0000000100)='/dev/snd/pcmC#D#c\x00', 0x20, 0x0) ioctl$PPPIOCGMRU(r3, 0x80047453, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x5d, &(0x7f0000000580), 0x0) socketpair(0x0, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) getsockopt$inet_mreq(r4, 0x0, 0x24, &(0x7f0000000040)={@multicast1, @local}, &(0x7f00000000c0)=0x8) ioctl$KVM_RUN(r4, 0xae80, 0x0) setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000580)=@security={'security\x00', 0xe, 0x4, 0x3b0, 0xffffffff, 0x0, 0x128, 0x128, 0xffffffff, 0xffffffff, 0x318, 0x318, 0x318, 0xffffffff, 0x4, &(0x7f0000000200), {[{{@uncond, 0x0, 0xc8, 0x128, 0x0, {}, [@common=@addrtype={0x30, 'addrtype\x00', 0x0, {0x20, 0x80, 0x1}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, 0x4d1, 0xe, [0x2b, 0x2f, 0xe, 0x9, 0x0, 0x3e, 0x5, 0x6, 0x4, 0x37, 0x3f, 0x7, 0x1f, 0x21, 0x0, 0x32], 0x2, 0x9c37, 0x5}}}, {{@ip={@loopback=0x7f000001, @multicast1=0xe0000001, 0xffffffff, 0xff000000, '\x00', 'bcsf0\x00', {0xff}, {}, 0x7e392e2014ec9d0e, 0x1, 0x20}, 0x0, 0x98, 0xf8}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, 0x3, 0x10, [0x12, 0xf, 0x1c, 0x62e1, 0x3b, 0x26, 0x2c, 0x8, 0x15, 0x21, 0x19, 0x36, 0xb, 0x11, 0x2, 0x26], 0x0, 0x8, 0x800}}}, {{@uncond, 0x0, 0x98, 0xf8}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x9, [0xfffffffffffffff7, 0x3, 0x100, 0x7, 0x9, 0x2], 0x0, 0x4, 0x4}, {0x100000000, [0x39e, 0x7, 0x0, 0x1000, 0x8, 0x8], 0xfffffffffffffffd, 0x0, 0x400}}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x410) 04:53:01 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000600)='/proc/self/net/pfkey\x00', 0x2, 0x0) ioctl$KVM_GET_FPU(r0, 0x81a0ae8c, &(0x7f0000000f80)) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000580)='/dev/uinput\x00', 0x88001, 0x0) ioctl$BLKALIGNOFF(r1, 0x127a, &(0x7f00000005c0)) r2 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r3 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x7, 0x200000) ioctl$KVM_SET_XSAVE(r3, 0x5000aea5, &(0x7f0000000180)={"57801fdbc2cb69bb121f4648782e0212e4b2c629c4d6c3a6f97b2e11d8d747dfd23a8704fb6484fa72cd18eb3f0e452a4e8975144d5fb314fa056df72de03afc85674c6c085c2424d6e8767cde7454f0e77533afe2ef69f560beb3f0146231b9c99300fd1d94792871ad857b403951708ce1c1390ac61b20a84fc35c13f38a13d7b21e037b1a0cd6813f039f7e207c5ef6c00ddf30e84693fea7d8bff7a76d190cdab8b0168f508b74817c28bdf52344b9ea54c1405057eac0270238c3554048e05fc7d1500a40814c6e72a7c3f2b67902eaf222ef75ef856c3193875e5b8e28e73be2d1e423f46efe738c5e55ef9e6420d9231e16a353e93173c9ad632ee0d3cecda6e3c6db84565babefd7d5d76261fb4ab61d0b7bea9426b1d35d9aea28c4adf2f447028533deb95deff0a7211aec3e565354c372cba259c5c36ff1ffe84474e538d2f15389326f7a7efa8bc0257a18bee655e774d64ca41358e6873c3b3a489c1da9f5c3be80579a63a4e3243a74cdb5955409f8e101140c49cc255d00b80a49dd81d50cd80189a7ab5d9e4d2822175b88759bd5dcc27bc278515ad45a1f89272420388221a1017cc08dd7ca53a723ed045295711d282b102f2dccc8302c82f171221683c6e37abd402bbb5fab518b4c2b39c25cb54ff42eb979f1519b4c4a69c4a9b69fd6596a11049c592e1c0c0eaebf9100aa6ca3530bc478c7594373108a9934f9029fa8eeb5b6c14f465adf15f400125710ea3698f0b1b851a6daec2dda22c7c9d307490d1df4354e89f4abc6d1d746e9aaf92cfdcf2f173a194fee0790b89bb77e8c7032e412fe7d9c4823dbddabf68f8700645ed4a2030773997dfa3799a920512fe96beb5cd115894e1fec0fc6e17fb96ab7fb86ab3b7c2b030caf54b991b98df354cf2cf889da6b874e41805d2be08821d206f69ed93dd949ae8a63c891d2bffab2aaf23f57c5afc54194bdd60710a2778160b56cd5ef08831c3b24eb22e60e9a8fd5b08b70671d39bc0e432b7be832a36e333e19531e45738204a950a754cf32368ff7cd389a6eb0910c5749f492fd32d50043d0fb44c74728e6c75ed5205135e125cf34826dea9dfc5d644cda8551ed5fcff1ee7917908f3b3fddc5501c989237a50b9874aa0820ddd720fd113cb858737aa1a55391ddb1dbe6a9a2bb69de19f8a08a2d8407d87e70c82bafcf3e0b68bee3fc92752d5d7016f182c171d113de5b104eab78da69d594c7b155a5240be5569a3f48f6bb3d4efb11e157c967b2972314ea77535c9617416302a97d0384304d19939be988c2affc347a524f7e6abb914d85f12a996354616c70b8af06a90c9ec503d8c69300e90ddeb166cccace22cf1bc3594ff92a7d51d2d179f41bc710ae9b1f7cb1cd67d54405ebc50088c1332c16df9bb8a047678ade8d1fec7c3091aef90748270cf48d3a"}) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r3, 0x84, 0x12, &(0x7f0000000100)=0x3, 0x4) r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) ioctl$sock_SIOCGIFBR(r4, 0x8940, &(0x7f0000000840)=@get={0x1, &(0x7f0000000800)}) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) 04:53:01 executing program 2: r0 = inotify_init1(0x0) r1 = gettid() fcntl$setownex(r0, 0xf, &(0x7f0000000100)={0x0, r1}) pipe2$9p(&(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@loopback, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in6}}, &(0x7f00000003c0)=0xe8) lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0}) write$P9_RSTATu(r2, &(0x7f0000000580)=ANY=[@ANYBLOB="5a0000007d02000000450003008d0000000002000000047afc79c593b7b7790000000000010000000000d9fa10aa5e02005c400900708bd0435fc4078507eae000000000000000000000a8ba0000", @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r5], 0x5a) r6 = fcntl$getown(r0, 0x9) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) lstat(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x6, &(0x7f0000000240)=[0xffffffffffffffff, 0xee00, 0xee00, 0xee01, 0xffffffffffffffff, 0xee01]) setresgid(r9, r10, r11) kcmp$KCMP_EPOLL_TFD(r6, r6, 0x7, r8, &(0x7f0000000040)={r7, r8}) 04:53:01 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") getsockname$inet6(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, @mcast2}, &(0x7f0000000100)=0x1c) r1 = memfd_create(&(0x7f00000004c0)="000000000000000100000001000000768e05f7c155ad7dc6947c573e5a69244e76382c0aa63d575ea3597f8b1728277ef76b30544d7ba92dcf978f1f81dc1b7f8f7b3451dada02ecb4f1ddcc8b5241da8945666e0073c25a6201004dbea37aabd3eb9888c4c629419f50937a6848e0d281dbee568c4de9a036c26b1922f64971d4df97fbab04e8ce4938b31dcf25934bc60901e18661fab8fb2988cd2bc260c2f572353e6bb0a002fc164d4f189b068062d10100000000000000400c0c4ca57b546b9430172ea5362fe0141b3df06ad235e815dc9eead3d9ffffffff0000000033d8b443453773e4a09edd8031124dee13ce9c75288f2ec833c7e66af5b19a00000000000000", 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f00000001c0)='\'', 0x1}], 0x1, 0x81802) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r1) r2 = gettid() ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r1, 0xc1105511, &(0x7f0000000940)={{0x9, 0x4, 0x80, 0x1, 'syz1\x00', 0x1f}, 0x2, 0x10, 0x4, r2, 0x5, 0x6, 'syz0\x00', &(0x7f0000000600)=["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", "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", 'selftrustedwlan1user..user]\x00', "000000000000000100000001000000768e05f7c155ad7dc6947c573e5a69244e76382c0aa63d575ea3597f8b1728277ef76b30544d7ba92dcf978f1f81dc1b7f8f7b3451dada02ecb4f1ddcc8b5241da8945666e0073c25a6201004dbea37aabd3eb9888c4c629419f50937a6848e0d281dbee568c4de9a036c26b1922f64971d4df97fbab04e8ce4938b31dcf25934bc60901e18661fab8fb2988cd2bc260c2f572353e6bb0a002fc164d4f189b068062d10100000000000000400c0c4ca57b546b9430172ea5362fe0141b3df06ad235e815dc9eead3d9ffffffff0000000033d8b443453773e4a09edd8031124dee13ce9c75288f2ec833c7e66af5b19a00", 'j-\x00'], 0x31f, [], [0x2, 0x200, 0xfffffffffffffff7, 0x3ff]}) sendfile(0xffffffffffffffff, r1, &(0x7f0000000000)=0x3c, 0x20000102000007) sendfile(0xffffffffffffffff, r1, &(0x7f0000000180), 0x400b) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffff}, 0x106, 0x5}}, 0x20) write$RDMA_USER_CM_CMD_REJECT(r1, &(0x7f0000000380)={0x9, 0x108, 0xfa00, {r3, 0x66, "5b85e3", "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"}}, 0x110) 04:53:01 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x100000000000000, 0x10000) 04:53:01 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/ptmx\x00', 0x400000, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0xe8, 0x400000) ioctl$TIOCMBIC(r1, 0x5417, &(0x7f0000000100)=0x9) r2 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0xe78c2cd7da00c3c, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000)={0x0, 0x8}, &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) ioctl$SCSI_IOCTL_TEST_UNIT_READY(r3, 0x2) ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000140)) 04:53:01 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x6002, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:01 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f76") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:01 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$bt_bnep(0x1f, 0x3, 0x4) r2 = fcntl$dupfd(r0, 0x0, r1) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) write$P9_RAUTH(r2, &(0x7f00000000c0)={0x14, 0x67, 0x1, {0x21, 0x1, 0x1}}, 0x14) ioctl$sock_proto_private(r3, 0x89e1, &(0x7f0000000000)="b9c5f49c1b43ff85f9d71f0ca18cb44253c21bd8b2eef860e5bdef757ab42869877294842c2fa2aa2a593e985184d45687bd2c03c0a9d4311526acc493696fadc244e94c31924ad36df79ccde394aefb6a7afee466d7678b26e1ab97591ef4d6f9ba9e0e0944a4179983fcb5f95a072f7f04161c415e7422154a56bb753268def8dd4d676cbde3058e8cf31134032e740a115fa43aa2") ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r2, 0xc0605345, &(0x7f0000000100)={0x5, 0x0, {0x2, 0x3, 0x6, 0x0, 0xfffffffffffffffb}}) syz_emit_ethernet(0x1022, &(0x7f0000000180)={@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [{[], {0x8100, 0x1000, 0xffffffffffff06be, 0x1}}], {@mpls_uc={0x8847, {[{0xbc, 0x401, 0x9, 0xffffffff}, {0x7, 0x8, 0x1ff, 0x2761}, {0x1, 0x7, 0x400, 0x4}, {0x8fb9, 0x6, 0xfff, 0x2}], @generic="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"}}}}, &(0x7f00000011c0)={0x0, 0x2, [0xebf, 0x1de, 0x6d7, 0x5cd]}) 04:53:01 executing program 2: r0 = socket$inet6(0x10, 0x3, 0x1f) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x50002, 0x0) ioctl$KDSETLED(r1, 0x4b32, 0xa) umount2(&(0x7f0000000080)='./file0\x00', 0x2) sendmsg(r0, &(0x7f0000000100)={&(0x7f0000000000)=@nl=@kern={0x10}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000180)="5500000018007f7000fe01b2a4a280930a60000000a84302910000003900090023000c00020000000d0005000b0000000000c78b80082314e9030b9d566885b16732009b84e7b1df136ef75afb0000000000000000", 0x55}], 0x1, &(0x7f0000000400)}, 0x0) 04:53:01 executing program 3: r0 = gettid() socketpair$inet6_sctp(0xa, 0x5, 0x84, &(0x7f0000000000)) capget(&(0x7f0000000200)={0x19980330, r0}, &(0x7f0000000300)) 04:53:02 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d34") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:02 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x4000000000000, 0x10000) 04:53:02 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x101000, 0x0) recvfrom(r1, &(0x7f0000000280)=""/118, 0x76, 0x40000100, 0x0, 0x0) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:53:02 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x3d00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:02 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000002c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7295df0df821728d598bf6c2c702ff314", 0x20) r1 = accept$alg(r0, 0x0, 0x0) r2 = semget$private(0x0, 0x4, 0x2) semctl$GETZCNT(r2, 0x2, 0xf, &(0x7f00000000c0)=""/192) sendmmsg$alg(r1, &(0x7f0000002580)=[{0x0, 0x0, &(0x7f00000013c0), 0x293, &(0x7f0000000080)=[@op={0x18, 0x117, 0x3}], 0x10b}], 0x1, 0x0) 04:53:02 executing program 3: r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000005000)={{0x0, 0x90e}}, &(0x7f000000afe0)) timerfd_settime(r0, 0x3, &(0x7f000000b000), &(0x7f000000dfe0)) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)="2d766d6e657430f9265c292847504c293a2a776c616e305b272c2e76626f786e6574312b00", 0xffffffffffffff9c}, 0x10) ioctl$BLKGETSIZE(r1, 0x1260, &(0x7f0000000080)) 04:53:02 executing program 2: r0 = socket$inet_sctp(0x2, 0x0, 0x84) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000000)={0x0, 0x6}, &(0x7f0000000040)=0x8) r2 = syz_open_dev$dmmidi(&(0x7f0000000140)='/dev/dmmidi#\x00', 0x9d4b, 0x40) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(r2, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000200)={0x144, r3, 0x410, 0x70bd2a, 0x25dfdbfe, {0x11}, [@IPVS_CMD_ATTR_SERVICE={0x70, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblc\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x4}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast1=0xe0000001}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sh\x00'}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xd162e97918a3e7f1}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x28}}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xff}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}]}, @IPVS_CMD_ATTR_SERVICE={0x34, 0x1, [@IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x1c}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e23}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x2b}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xff}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x40}]}, @IPVS_CMD_ATTR_DAEMON={0x4c, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}]}, 0x144}, 0x1, 0x0, 0x0, 0x40}, 0x8000) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000080)={r1, 0x0, 0x6, [0x3ff, 0x5, 0x1000, 0x40004000, 0x5, 0x5]}, 0x14) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x140, 0x0) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r4, 0x84, 0x22, &(0x7f0000000400)={0x9, 0x8, 0x100, 0x7, r1}, 0x10) connect$bt_l2cap(r4, &(0x7f0000000440)={0x1f, 0x5, {0x2, 0x5, 0x8, 0x5, 0x2, 0x80000001}, 0x100, 0x1000008}, 0xe) 04:53:02 executing program 3: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x54}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x80000, 0x0) getpgrp(0x0) waitid(0x2, 0x0, &(0x7f00000000c0), 0xe0000000, &(0x7f0000000100)) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000080)) ioctl$BLKALIGNOFF(r0, 0x127a, &(0x7f0000000240)) perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000001000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000300)="2e36f2ad0f01c866b9800000c00f326635010000000f303666839ad1d3cc0fde0965f20f1022baf80c66b8c6bb4d8366efbafc0cec66b8355900000f23c00f21f86635030001000f23f80fc72e0000ba2000b84e6cef", 0x56}], 0x1, 0x0, &(0x7f00000001c0), 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = socket(0xa, 0x1, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000380)={'filter\x00', 0x7, 0x4, 0x498, 0x138, 0x0, 0x138, 0x3b0, 0x3b0, 0x3b0, 0x4, &(0x7f0000000280), {[{{@arp={@empty, @loopback=0x7f000001, 0xff000000, 0xffffffff, @mac=@random="8a8356e2bf38", {[0x0, 0x0, 0xff, 0x0, 0xff]}, @empty, {[0xff, 0x0, 0xff, 0x0, 0x0, 0xff]}, 0x6, 0x1b5, 0x3fa6, 0x2, 0x6497ea0a, 0x7, 'sit0\x00', 'irlan0\x00', {0xff}, {0xff}, 0x0, 0x10}, 0xf0, 0x138}, @unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00', 0x0, 0x0, 0x800}}}, {{@arp={@dev={0xac, 0x14, 0x14, 0x1b}, @dev={0xac, 0x14, 0x14, 0xb}, 0xff000000, 0xffffff00, @mac=@random="19acc468baaa", {[0xff, 0x0, 0xff, 0xff, 0x0, 0xff]}, @mac=@dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x1c}, {[0xff, 0x0, 0x0, 0xff, 0x0, 0xff]}, 0x1, 0x2, 0x80000001, 0x6, 0x427, 0x4, 'bpq0\x00', 'veth0_to_bond\x00', {}, {}, 0x0, 0x8}, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, @remote={0xac, 0x14, 0x14, 0xbb}, @loopback=0x7f000001, 0xf, 0x1}}}, {{@arp={@local={0xac, 0x14, 0x14, 0xaa}, @local={0xac, 0x14, 0x14, 0xaa}, 0x0, 0xffffffff, @mac=@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, {[0xff, 0xff, 0xff, 0x0, 0xff]}, @empty, {[0xff, 0xff, 0x0, 0x0, 0x0, 0xff]}, 0xc327, 0x4, 0x7, 0x5, 0xfffffffffffffff7, 0xd2e, 'ip6tnl0\x00', 'yam0\x00'}, 0xf0, 0x138}, @unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00', 0x1, 0x1, 0x2}}}], {{[], 0xc0, 0xe8}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x4e8) ioctl(r5, 0x4000008912, &(0x7f00000000c0)="295ee1311f16f477671070") ioctl$KVM_RUN(r4, 0xae80, 0x0) 04:53:02 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x195000, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:53:02 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x6, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:02 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x3f00000000000000, 0x10000) 04:53:02 executing program 5: mkdir(&(0x7f0000000040)='./file0\x00', 0x8) syz_mount_image$reiserfs(&(0x7f0000000000)='reiserfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000000240)="00080000ec0500006d8a2b001200000000010000b90200000001000084811f4ce10000001e000000000000000050ec0302e5fb00526549734572334673", 0x3d, 0x10000}], 0x0, &(0x7f0000013900)=ANY=[@ANYBLOB="8c"]) keyctl$join(0x1, &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x2}) [ 172.411628] REISERFS warning (device loop5): super-6502 reiserfs_getopt: unknown mount option "Œ" [ 172.442284] REISERFS warning (device loop5): super-6502 reiserfs_getopt: unknown mount option "Œ" 04:53:02 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f76") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:02 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0xfffffffffffffffc) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0xdc, 0x40}, 0xffffffffffffff9e) bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x4, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1, 0x28}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0xffffff97]}, 0x18) 04:53:02 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) setsockopt$bt_rfcomm_RFCOMM_LM(r1, 0x12, 0x3, &(0x7f0000000040), 0x4) 04:53:02 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xf5ffffff00000000, 0x10000) 04:53:03 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") clone(0x0, &(0x7f00000012c0), &(0x7f0000001080), &(0x7f00000022c0), &(0x7f0000001f00)) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) ioctl$sock_ifreq(r1, 0x89f4, &(0x7f0000000080)={'eql\x00\x00\x00\x00\x00\b\x00\x00\x00\x00\x005\x00', @ifru_settings={0x707000}}) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) getsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f0000000140), &(0x7f0000000180)=0x2) timerfd_settime(r2, 0x1, &(0x7f00000000c0)={{0x0, 0x989680}}, &(0x7f0000000100)) 04:53:03 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8002, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:03 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) write$binfmt_aout(r0, &(0x7f0000000140)={{0x107, 0x4, 0x10001, 0xf3, 0xe7, 0x20, 0xf9, 0x23c3}, "022fa03dd5d8c9a3c29d04a75733fa412b1e021378f1d3798c5f55128f851a10b44df877287ccb96dd20a4b2d765a6591e6f576580795120e2d4cf7890f10a399d", [[], [], [], [], [], [], [], [], [], []]}, 0xa61) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x8f, 0x0, [0x9]}) 04:53:03 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xf000000, 0x10000) 04:53:03 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d34") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:03 executing program 2: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = socket(0x2, 0x3, 0x1) getsockopt(r0, 0xff, 0x1, &(0x7f000091b000), &(0x7f00003b7000)) getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0xc) 04:53:03 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ppp\x00', 0x16800, 0x0) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x100000000}, &(0x7f0000000180)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f00000001c0)={r1, 0x619}, 0x8) setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f0000000200)=0x5, 0x4) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, &(0x7f0000000380)={'raw\x00', 0x2, [{}, {}]}, 0x48) r2 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x81, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000240)='/dev/null\x00', 0x40000, 0x0) ioctl$KVM_SET_TSS_ADDR(r3, 0xae47, 0xd000) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) 04:53:03 executing program 2: mknod(&(0x7f0000000100)='./file0\x00', 0x1040, 0x0) open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000000140)) r2 = open$dir(&(0x7f00000000c0)='./file0\x00', 0x185840, 0x0) getsockopt$packet_buf(r2, 0x107, 0x0, &(0x7f0000000000)=""/40, &(0x7f0000000040)=0x28) tkill(r0, 0x15) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000580)=ANY=[@ANYBLOB="66696c74657200000000000000000100000000000000000000000000000000000e0000000400000058040000ffffffff0000000098028000000000000000ffffffffffff880300008803000088030000ffffffff04000000", @ANYPTR=&(0x7f0000000180)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c800f000000000000000000000000000000000000000000000000000280052454a4543540000000000000000000000000000000000000000000000000700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008001a8010000000000000000000000000000000000000000000000002800706b7474797065000000000000000000000000000000000000000000000001000000200000009000737268000000000000000000000000000000000000000000000000000001ba052008ef00000000000000000000000000ffffac14141cff020000000000000000000000000001fe800000000000000000000000000012ffffff00ff000000ffffff0000000000ffffffffffffffffffffffff000000000000000000000000ffffffff000000000030040000000000280052454a454354000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c800f000000000000000000000000000000000000000000000000000280052454a45435400000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a800d0000000000000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff00000000"], 0x4b8) getpeername(r1, &(0x7f00000001c0)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000240)=0x80) open$dir(&(0x7f0000000540)='./file0\x00', 0x27e, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000002c0)={0x7, 0xb3, 0x4, 0xfff, 0x0, 0x4000000, 0x0, 0x5, 0x0}, &(0x7f0000000300)=0x20) setsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000340)={r3, 0xfffffffffffff969, 0x7fffffff, 0x7}, 0x10) 04:53:03 executing program 5: r0 = socket(0x40000000015, 0x80003, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setreuid(r1, 0x0) recvfrom$inet(r0, &(0x7f0000000000)=""/30, 0x1e, 0x0, &(0x7f0000000040)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) ioprio_set$pid(0x2, 0x0, 0x0) 04:53:03 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x1000000, 0x10000) 04:53:03 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0xfffffffffffffff9) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000080)={0x10f004, 0x2000, 0x7, 0x9, 0x7fff}) 04:53:03 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1c00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:03 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f7620") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:03 executing program 3: mremap(&(0x7f000014e000/0x4000)=nil, 0x4000, 0x1000, 0x0, &(0x7f0000838000/0x1000)=nil) r0 = socket$unix(0x1, 0x0, 0x0) r1 = open(&(0x7f0000000100)='./file0\x00', 0x8000, 0x4) setsockopt$inet6_IPV6_ADDRFORM(r1, 0x29, 0x1, &(0x7f0000000140)=0x2, 0x4) mmap(&(0x7f000029d000/0x200000)=nil, 0x200000, 0x1, 0x8031, r0, 0x1b) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ashmem\x00', 0x24201, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='\x00'}, 0x10) ioctl$ASHMEM_SET_NAME(r3, 0x41007701, &(0x7f00000001c0)='\x00') ioctl(r2, 0x2, &(0x7f0000000180)="2b5ee10e1f16f496671070") ioctl$SNDRV_SEQ_IOCTL_PVERSION(r3, 0x80045300, &(0x7f00000000c0)) mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) 04:53:03 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000001d000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000040)="66baf80cb8afa4e184ef66bafc0cec660f388183b8b91270c4c1ad73d4ca660f388084822741aace0f30d2edc4c2f931a1b48800000f35360f21b0c4c1e9f809", 0x40}], 0x1, 0x0, &(0x7f00000000c0), 0x0) r3 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x8000) write$P9_RMKDIR(r3, &(0x7f00000001c0)={0x14, 0x49, 0x1, {0x4, 0x1, 0x7}}, 0x14) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f00000000c0)="65f3f20f01df2e3e0f73d455c4c145623766b81c000f00d8c4c3a141cc800f01d10f01742a01c74424000b000000c744240200000000c7442406000000000f0114240f005c21000fc79b9fb88638", 0x4e}], 0x1, 0xfffffffffffffffd, &(0x7f0000000180)=[@flags={0x3, 0x102}], 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) 04:53:03 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xf00, 0x10000) 04:53:03 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x2) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000180)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000)={0x0, 0x0, 0x800}, &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e24, @broadcast=0xffffffff}, @in={0x2, 0x4e20, @multicast2=0xe0000002}], 0x20) 04:53:03 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1f00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:03 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0) syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:53:03 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x18000000, 0x10000) 04:53:03 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d34") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:03 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = creat(&(0x7f0000000700)='./bus\x00', 0x0) ftruncate(r1, 0x800007) r2 = open(&(0x7f0000000000)='./bus\x00', 0x4000, 0x0) sendfile(r1, r2, &(0x7f0000000140), 0x8000ffffffff) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0xa}) ioctl$fiemap(r2, 0xc020660b, &(0x7f0000000380)=ANY=[@ANYBLOB="0000000000000000ff"]) 04:53:03 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x2000, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:04 executing program 2: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) ioctl$sock_SIOCETHTOOL(r2, 0x8921, &(0x7f00000000c0)={'veth1_to_bond\x00', &(0x7f0000000000)=@ethtool_stats={0xb}}) close(r2) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x0, 0x0) ioctl$EVIOCGBITKEY(r3, 0x80404521, &(0x7f0000000080)=""/35) close(r1) 04:53:04 executing program 5: r0 = creat(&(0x7f0000000080)='./file1\x00', 0xfffffffffffffffe) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000000)=0x3, 0x4) pwritev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)='I', 0x1}], 0x1, 0x0) fallocate(r0, 0x20, 0x0, 0x8000) 04:53:04 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) getpeername(r1, &(0x7f0000000180)=@pppol2tpv3in6, &(0x7f0000000040)=0x80) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) flock(r1, 0x2) 04:53:04 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xff5f0000, 0x10000) 04:53:04 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xc001, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:04 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f7620") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:04 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x2007, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:04 executing program 5: mmap(&(0x7f0000000000/0xfd4000)=nil, 0xfd4000, 0x0, 0x40000000000031, 0xffffffffffffffff, 0x0) r0 = socket$rds(0x15, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000000c0), 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20000, 0x82) openat$cgroup_int(r1, &(0x7f0000000040)='cpu.weight.nice\x00', 0x2, 0x0) syz_open_pts(r1, 0x2000) 04:53:04 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xff5f, 0x10000) 04:53:04 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ptmx\x00', 0x80000fffffff7fc, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x0, 0x100) setsockopt$inet_sctp_SCTP_NODELAY(r1, 0x84, 0x3, &(0x7f0000000100)=0x5, 0x4) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x401, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:53:04 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x34) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000000c0)={{{@in=@dev, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@mcast1}}, &(0x7f00000001c0)=0xe8) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={0x0, 0x0, 0x0}, &(0x7f0000000240)=0xc) fchownat(r0, &(0x7f0000000080)='./file0\x00', r1, r2, 0x0) fchownat(r0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x400) 04:53:04 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x5, 0x10000) 04:53:04 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xe005, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:04 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f76") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:04 executing program 1: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x8300, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000100)={'yam0\x00', 0x1}) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:53:04 executing program 3: r0 = perf_event_open(&(0x7f0000940000)={0x2, 0x78, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000940000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, r0, 0x3) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x404000, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000080)={0x0, 0x200, 0x6, 0x4, 0x0}, &(0x7f00000000c0)=0x10) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000140)={0xffffffff}, 0x13f, 0x1}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f00000001c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e23, 0x9, @dev={0xfe, 0x80, [], 0xd}, 0xe310}, r3}}, 0x30) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000100)={r2, 0xa4f8}, 0x8) 04:53:05 executing program 2: socketpair$inet6_sctp(0xa, 0x5, 0x84, &(0x7f0000001440)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$getflags(r0, 0x40b) r2 = dup3(r0, r1, 0x80000) getsockname$packet(r2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000140)=0x14) setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f00000001c0)={@loopback=0x7f000001, @multicast1=0xe0000001, r3}, 0xc) socketpair(0x1e, 0x5, 0x0, &(0x7f00000000c0)={0x0, 0x0}) close(r4) setsockopt$sock_attach_bpf(r5, 0x10f, 0x87, &(0x7f0000000180), 0x127) getsockopt$EBT_SO_GET_INIT_INFO(r5, 0x0, 0x82, &(0x7f0000000000)={"6e6174006133000000000016000000000000000000000b00"}, &(0x7f0000000080)=0x78) recvmsg$kcm(r5, &(0x7f000000f340)={&(0x7f000000dec0)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f000000e2c0)=[{&(0x7f000000e200)=""/182, 0xb6}], 0x1, &(0x7f000000e340)=""/4096, 0x1000}, 0x0) 04:53:05 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ppp\x00', 0x1, 0x0) ioctl$KVM_S390_UCAS_UNMAP(r3, 0x4018ae51, &(0x7f0000000240)={0x26, 0x8, 0xfffffffffffffff8}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x5d, &(0x7f0000000580), 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0xffff, 0x4000) write$P9_RLINK(r5, &(0x7f0000000180)={0x7, 0x47, 0x1}, 0x7) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000017000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000100)="66b8008000000f23d80f21f86635800000400f23f8f0f75b00d14be7679464f080056c0f01cf1af4dea927890f20c06635000001000f22c02e0fc75b0f", 0x3d}], 0x1, 0x0, &(0x7f0000000180), 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000002c0)=ANY=[@ANYBLOB="c4000000090000000400000074e38010cf5a56b1a52d64569c09787066c32a3a67bacc137b55412bee97e3854a275dea45a831f5f9ee9b740c93c97e6358b54eea125fe240156e080f7ede9f2b22369e29a9d3c9808bfa993161c4104cbfb22e8f2f92aafc6becd8e86f52f8acad4d83b428e9e0249f4b40f6fb10caf29fbf75c2f131e9e4f50cc1f7585421a9195f8746c2e535dc5f32acd43dd8e0ad92ae0a5f29f6b12298e56cf93bbbae669a4923b0b0b6198a1eced389202f7802183afff04393a756aeb8903818c13f36201078"]) ioctl$sock_netdev_private(r2, 0x89fe, &(0x7f0000000400)="e1c0d93c6be1d5ba7c0e79b755c3b74ef47f460df41f800a8a92ec1929c22fd6cd91ea8b00c2c765f06591c4db64eb09b87f3291a7b390903deb308c4cf07beee91a4de1bdb250768152dc53c7224f89f72aaa249109ae5f2eb5db97dda2a70e419c4d000fba29d5cd84aed2228ab0127edba3a6b60954240dbb25ca18aa112f533a206e7b4d16482da35234e04aca55") request_key(&(0x7f0000000000)='rxrpc\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a}, &(0x7f0000000080)='team0\x00', 0xfffffffffffffffd) ioctl$SG_GET_KEEP_ORPHAN(r4, 0x2288, &(0x7f00000003c0)) ioctl$KVM_RUN(r4, 0xae80, 0x0) listen(r5, 0x1) 04:53:05 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x2, 0x10000) 04:53:05 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xc006, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:05 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0xfffffffffffffffe, &(0x7f00000002c0)="025cc83d6d345f8f762070de15331cb552148685134282b838221405c994260b517bf328ec72d09f06803015c30fe671922cec613ec7e18831ea293077f02ed87658fd6e586519ed0a59d90e0f0922047ba3ccd2309f9eeaf5f1b9e838982e2e6a9bcc330a5b543afaacdeb45021c8fae3778b9439954f28d5a750f838bbc54b1128fdb83f4093968137bb1c7c4a729b2c19f5dcf70a5635f55b7859e36675581d5000fd7657cc4cbc987046b39f") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000012000/0x3000)=nil, 0x3000}, 0x4}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x63, &(0x7f0000000000), &(0x7f0000000040)=0x1e) r3 = socket$inet(0x2, 0x80000, 0x0) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x40000000}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000180)={r4, @in={{0x2, 0x4e21, @rand_addr=0x5}}, 0x2, 0x7, 0x8, 0xffffffffffffffe1, 0xc}, &(0x7f0000000240)=0x98) close(r2) close(r3) [ 175.058540] Unknown ioctl -2143271647 [ 175.073098] Unknown ioctl -2143271647 04:53:05 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f7620") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:05 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xe004, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:05 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = getpgrp(0x0) sched_getattr(r1, &(0x7f0000000080), 0x30, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) finit_module(r2, &(0x7f00000000c0)='/dev/kvm\x00', 0x3) ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4040aea0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x403}) r5 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0) ioctl$EVIOCGBITKEY(r5, 0x80404521, &(0x7f0000000100)=""/69) 04:53:05 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = getpid() syz_open_procfs$namespace(r0, &(0x7f0000000040)='ns/pid\x00') ioprio_get$pid(0x3, r0) 04:53:05 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='eth1#)\x00'}, 0x10) sendmmsg$alg(r1, &(0x7f0000003000)=[{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000180)="7ac955df2e892e78fdf15408a720493696cb90f3239a7e6d5fec90237bf8a3032585f419a60a30dec30b5366e8f02eaf0ad71f15c8abe797a28c2fe4f509086d1b9f32dec9cae2711cc06fd46fb5f6d16ba91309712541fc91a1ab1c694582755202c305f9ead764c81a44ee3fedc0c7b139ad6ff04cc435d312bb643ee75ae671e2a493eeb3624c712862dc00917a6de3311e871ac9bb8a91", 0x99}, {&(0x7f0000000240)="f12b931864e27a49ff183b699da476bde0e9b5a6c5666451586739d8ac6c22b76f281b2766a93bd1e5f1545e7d077ece1d7db696114505f87fdd27575ccde4f167f036ce", 0x44}, {&(0x7f00000002c0)="5856684b82c72d2767921b0bc9badf0f80fa20541101ae0be987829b5e8f90dfe68739ed24614eaa7c645821a8ebcd6f780b70156275e919d9b5ed78a4ca476fcffe9de9becff5e70986c153a153366833728d6d0b5617591dfbd70083487cb678d4176f7484b283c338f8cd882e563f3404e63dbbdf576a2fcbd7766912daf27f5166deeb3df1a7ba5e663c2508f594f95e0ab974dda0067cee412d6c14", 0x9e}, {&(0x7f0000000380)="c0c2c628658255afe036259d18e91713db7ae4a7a25f7d2a260abe54b3dc5a7762b7267accda715841223b9b41217a69727d4cff7068", 0x36}, {&(0x7f00000003c0)="9d00d0c04855780f73e1d6749c1d4028ec7a129c58baf27a128ba615875118e44b6107fce2ccadd35f8d84a038686b3b095c284ae2a2cb4784a440e9570f8b55f60b0de0101a3fde2a01e8979ed7cc41df598d01c28ecb6fb517fc8396ce82196fb25c9e70abe3360527963ff52763b2b9b75b5338b4f30a0d27b70505bc1db6d14a21acea6ee52d0730ac6aa8347a103fcfcb64119bd460dcdf48e62be2ee0e", 0xa0}, {&(0x7f0000000480)="c9aac822a8209414326f6b33dd49be3872f7bf9fa8a6837274015d589cdd37ded95fdf282e7b89120514e953a1ac5ae2d6325c1b1e3955d58a710ffd25e1dec52b2fa58504b745b944ae89147b3d9afb7a734a8548038a6b294cbbc86b13035e8c811eb6747c2c787637d7d5304de48b3fbe801007b1bce3d12239d1f152e351b9faf73f2cd41ea5795a77d3c24047286298764f", 0x94}, {&(0x7f0000000540)="f1e7a84e5bc3fa8880fa87bb634784459184bd7c53f5b40112d6f4c386d580a42f8268216f4a44eef84f82a829283806409a0950e213d500e88d30123581f0e82f8505be9751f547a421a8922167534b61767339cc33e48548ec56ea66ca7e66272785bd6c563f6398c16b2af4a27bbae716cc6d477a8c6a7225b672969692202b042995e5554db6feacb117c2060f77a4215c33d15340a563f9317bb3169161ed167f116a01adbea732e25a7ad8d1970d6c45fef6c180e81ad793b45efcc539bb2bf6ff8ee17eab087171e3862478c755f14a1489ac6f25726a9ab189144b", 0xdf}, {&(0x7f0000000640)}, {&(0x7f0000000680)="eb1477dcad3c26b9acd2e246c774820c37a58e81d28909eed1e30e52074f024c1cbaf5fee94a067c1575d0c71296176274", 0x31}, {&(0x7f00000006c0)="1b3baabb96c9ddddb0f7c3dd832de486955101e3973d18fee4f48506f7053fb07230690becda621ca24a91e7b090a2faf82162ef8912dfe3545076b3253d27028dfea4cc6c8b34ecaed8f0a15fca495888da9156cc6605a6a8a96810bf239539981fbd25c32db8bf1130d2e39a623bca93fc1dcec4261d7acd9848c2441fbd4908066e59ffe9ccb6111c9f5c2661f0ef0911f085a51cea9843989299812845e512ec8d7397f4f64f38ad77555371e1e4cf4d7de3825cd7061d5a4ded9b62336c2a3de47b6930832ecafb39caf3", 0xcd}], 0xa, 0x0, 0x0, 0x1}, {0x0, 0x0, &(0x7f0000002e40)=[{&(0x7f0000000880)="c97adab88fd480e04b1b3fb524368f125815c7f11b9c9dfef41b34ca706097b5389457e8c598c193b1d630353398e4c47ac69abdd4527ebf641e3c93e01f9a373db57f525add6f39145a0315", 0x4c}, {&(0x7f0000000900)="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", 0x1000}, {&(0x7f0000001900)="adcd8a49917a4f0122e61f36cbe06b8d6f7ba9043803cb70b19a6ea744cb03b75c0d73e374a40f42caa674f9a93242e2996b6c659a83a85c3b201c323d868d3d37c714bb0b3875824c629dc5180a8cb3bc75c8d1227e2ff7043779b1deb0b3904c044409bb7aff339346d4b5495eca9b39e31d20c1958fac1c671c35769647cbcfee29529dcf77490a", 0x89}, {&(0x7f00000019c0)="859bd0ce794e5387d23a515f43ea16c386ebfe4af76550263262b8aad87fd317126549aec4694597dcea34316d835d37e6447337109f4f588d96614ac32474a49cb63b1f05c6620f9fbf963eac5e55e209fc17e624a1c5be893867807ebe1322e36c78205b0c5011471b9464b3d9832e78e7f262688fa35f8f0f77212658f724f1ee1183dcccf7fd3b66c822685e01fecdb3221a", 0x94}, {&(0x7f0000001a80)="16e3d9ecc21a7045a316e745c9dc929f674a1ace378eb8516c8cee2bad8e2b5412df77f30575dfdd7d751c0ee1ee5d60378bb95a821537c8a201a9dd27d2358f87dd6102caaded533a47896cb3be58fc0002f0a7c883a449f68861d4a654dcb963c318f8d3d62a572fec25f109e0dc7575c3dc2f9cf17c43cf146110f7865a4527509d7a32c29b35bec16407a690bf98f2", 0x91}, {&(0x7f0000001b40)="0bdcfd4df630465f998c2b4c73bf02f86c1ed6cc5b768031c1f045e66913f0a4901697a7f7eb26da6cf118ccc3d497ded8eefcd1347bea7f82f80d99ce9a11b84cd16247965e8aad6d930fb5c1826048300bc15221b747bc26e16eb0b7fd103ac2d3e1eb3163a4fa7b6bffc971ce1f96913d178a50378d2846f1244a0c9de5c7c6ab218a609175eb8c362c7d09864c5f2cbbc7fb7b756a6fb83ba8deb86ca355c81a7f2a5a650cd8f1966b9b2bea811d34a984381de7d8cd8a49b541b0398c15", 0xc0}, {&(0x7f0000001c00)="3a5f88c2e18b54706b1a6570e37694b70b4e4abdef32931689ee4726c85e9ca02f124b746129ac7e4617a48930ce14a51e3ddfe0942d6b9daa42cf0df9721baa2ac6d3ae70a014bb36dcc3ddfba73b0a0f9194cae68fbd6427652f91dfc48efccaf23477abf7c809bb15d593668e73075fa1788c70c2ab3b6a671f4aa7d12f3832e7e8f702d57dcdef72e9f4cc7470f7aae11aad71f0f61c5779fb595f4a7d627944b0589d8c2f5ef10d00108aa69c0d97055fd6ff5a369a71c62b816ddf2cd0e975e03341893f2c15c60fca27", 0xcd}, {&(0x7f0000001d00)="4729e09e8375e164ac9238cd1acd68f4906fa07ea9ee52621aa4378118fcb2cdea40d8217f56faea757337932826e8", 0x2f}, {&(0x7f0000001d40)="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", 0x1000}, {&(0x7f0000002d40)="f6acb64163d11c2bd3ba72ba571646a8351768971abd60fcd883dd7552a4c3c92b980bd0554de9afa9e9873bcd0c00968a764741bf3cc0131ef19ba1f9d50a4dd98d06cfe2ca7488060f3207dcef3a03d8d8b4c5b141661fa07a2272073201b24c3008a5d5b75fe8b38e924cb3297e4ddaf6ecf385ecf108efa96e9405cb140890f8b7d9774efc55fde91aa67623cf5c4c39e11956090d0c9918d871ea36181a34d31013da516c70ad2699c49336850b819011517ba31237850588b034086ee5e383eecc7da15b6c8ae8085cf2ead7a5b414f40891b82ce6cf2c8105bfc382d5015edb192d87842ffb9bc32548a40c3024", 0xf1}], 0xa, &(0x7f0000002f00)=[@assoc={0x18, 0x117, 0x4, 0xe01c}, @op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0xfffffffffffffffc}, @op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x9ef}, @assoc={0x18, 0x117, 0x4, 0x2}, @iv={0x20, 0x117, 0x2, 0x8, "692ca22dc7d23237"}], 0xc8, 0x4}], 0x2, 0x4000000) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:53:05 executing program 5: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000cba9b3c205170055e801c438b2e4175493ddc1bb82080d1d683351ae27e9dc3d4f6c325e6c999429368b658d953a24a6df48a43dbe19c4307bf25434b1f2ea4c6d5d7d3245710957932d691e15e358a9647622038285b09cb632f71f1f9d1314a453e08be5950ac0a0e83849de1bbdef28bbd4"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f0000006f3d)=""/195}, 0x48) r1 = socket$inet_udp(0x2, 0x2, 0x0) sendmsg(r1, &(0x7f0000000580)={&(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2=0xe0000002}}}, 0x26, &(0x7f00000001c0), 0x0, &(0x7f0000000200)}, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x34, &(0x7f0000009000)=r0, 0x4) 04:53:05 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xfeffffff00000000, 0x10000) 04:53:05 executing program 5: sched_setattr(0x0, &(0x7f00000002c0)={0x0, 0x1, 0x0, 0x0, 0x4}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x608a41, 0x0) r2 = dup2(r0, r0) ioctl$TUNSETVNETBE(r1, 0x400454de, &(0x7f0000000080)=0x1) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r2, 0x111, 0x3, 0x1, 0x4) listen(r1, 0x5c3) listen(r0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r3, &(0x7f00000003c0), 0xfffffe10, 0x20000004, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c) socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f00000000c0)) shutdown(r1, 0x0) [ 175.731597] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. 04:53:05 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f76") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:05 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) close(r0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x58) r2 = accept$alg(r1, 0x0, 0x0) io_setup(0x1, &(0x7f0000e4b000)=0x0) io_submit(r3, 0x1, &(0x7f0000bd9fe0)=[&(0x7f0000617fc0)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f000007d000)="b3", 0x1}]) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCETHTOOL(r4, 0x89e1, &(0x7f0000000040)={'lo\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="01800000000000000000000000000000001000000000020000000000000000000000000002000000"]}) 04:53:05 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1100, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:05 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/uinput\x00', 0x2004, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000000040), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x3, 0x10442) 04:53:05 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8800000000000000, 0x10000) 04:53:05 executing program 3: r0 = socket$inet(0x10, 0x3, 0x810c) sendmsg(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000008000)="4c0000001200ff09fffefd956fa283b724a600800000000000000068354015002c001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d4c1cbc882b079881", 0x4c}], 0x1}, 0x0) recvmsg(r0, &(0x7f0000001580)={&(0x7f0000000000)=@sco, 0x80, &(0x7f0000001440)=[{&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001380)=""/176, 0xb0}], 0x2, &(0x7f00000014c0)=""/136, 0x88}, 0x0) recvmsg(r0, &(0x7f0000003040)={&(0x7f00000019c0)=@un=@abs, 0x80, &(0x7f0000002f00)=[{&(0x7f0000001a40)=""/4096, 0x1000}, {&(0x7f0000002a80)=""/236, 0xec}, {&(0x7f0000002c00)=""/197, 0xc5}, {&(0x7f0000002d00)=""/137, 0x89}, {&(0x7f0000002dc0)=""/60, 0x3c}, {&(0x7f0000002e40)=""/158, 0x9e}], 0x6, &(0x7f0000002fc0)=""/77, 0x4d}, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) recvfrom$unix(r1, &(0x7f0000000080)=""/182, 0xb6, 0x40000000, 0x0, 0x0) 04:53:05 executing program 3: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f76") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:05 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xa80, 0x135) ioctl$TUNSETVNETLE(r0, 0x400454dc, &(0x7f0000000100)) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:53:06 executing program 2: bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x3, 0x24, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) 04:53:06 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x0, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:06 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x4000000, 0x10000) 04:53:06 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x4, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:06 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000180)) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) poll(&(0x7f0000000300)=[{r0, 0x2000}, {r1, 0x200}, {r1, 0x8}], 0x3, 0x10001) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x3}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000000280)={r3, 0x7}, &(0x7f00000002c0)=0x8) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:53:06 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000000)={0x0, 0x9, 0x10, 0x0, 0x5}, &(0x7f0000000040)=0x18) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000080)={0x0, 0x1, 0x6, 0x9b, r1}, 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f0000000180)=0x40000000000074, 0x315) setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='veno\x00', 0x5) bind$inet(r2, &(0x7f00000001c0)={0x2, 0x4e23, @multicast2=0xe0000002}, 0x10) sendto$inet(r2, &(0x7f0000a88f88), 0x2f0c, 0x20008001, &(0x7f0000e68000)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) 04:53:06 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1d00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:06 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_SIGNAL_MASK(0xffffffffffffffff, 0x4004ae8b, &(0x7f0000000000)=ANY=[@ANYBLOB="af2fd93ac9ba20ee2edc4bf54871406baa09aa"]) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f0000000000), 0x1000000000000040) splice(r1, &(0x7f0000000040), r0, &(0x7f00000000c0), 0x400, 0xc) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 04:53:06 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:06 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x1200, 0x10000) 04:53:06 executing program 2: r0 = open(&(0x7f0000000180)='./file0\x00', 0x101180, 0x80) write$cgroup_int(r0, &(0x7f00000001c0)=0x9, 0x12) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = accept4$inet6(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, @ipv4={[], [], @loopback}}, &(0x7f0000000140)=0x1c, 0x800) r3 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af1f02acc7edbcd7a071fb35331ce39c5a") fsetxattr(r3, &(0x7f0000000000)=@known='user.syz\f', &(0x7f00000000c0)='\x00', 0xfe9, 0x0) setsockopt$inet6_tcp_TLS_RX(r2, 0x6, 0x2, &(0x7f0000000200)={0x303, 0x33}, 0x4) write$P9_RATTACH(r3, &(0x7f0000000040)={0x14, 0x69, 0x2, {0x42, 0x1, 0x8}}, 0x14) 04:53:06 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f76") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:06 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xe000, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:06 executing program 2: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000011fd4)={0x3, 0x4, 0x4, 0x1, 0x0, 0x1}, 0x2c) r1 = memfd_create(&(0x7f0000000000)='syzkaller\x00', 0x2) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) ioctl$KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f0000001240)={0x8, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}]}) socketpair$inet(0x2, 0x0, 0x0, &(0x7f0000000100)) bpf$PROG_LOAD(0x5, &(0x7f00000031c0)={0xc, 0x5, &(0x7f0000000080)=@framed={{0x18}, [@map={0x18, 0x0, 0x1, 0x0, r0}], {0x95}}, &(0x7f0000000140)='syzkaller\x00', 0x3ff, 0x1000, &(0x7f0000000240)=""/4096}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000200)={r0, &(0x7f0000000040), &(0x7f0000000100)}, 0x20) 04:53:06 executing program 3: r0 = socket$can_bcm(0x1d, 0x2, 0x2) getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x15, &(0x7f0000000040)={@dev, 0x0}, &(0x7f00000000c0)=0x196) connect$can_bcm(r0, &(0x7f0000001ff0)={0x1d, r1}, 0x10) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rfkill\x00', 0x10000, 0x0) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r2, 0x5386, &(0x7f0000000180)) io_setup(0x1000, &(0x7f0000000000)=0x0) io_submit(r3, 0x1, &(0x7f0000000240)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000080)="060000008cf46cfde19a4e3bcfbdbedee32e68b3a251fd2cfd09684d9c7afae320bbf22a2ce3cb58fa63c42a238cb85f1023fa813c9a0e46", 0x38}]) munlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000) 04:53:06 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x2005, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:06 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xffffffffffffffff, 0x10000) 04:53:06 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x7, &(0x7f0000000000)="025cc85645ce7b996dad3b") madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2) madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0) 04:53:06 executing program 2: r0 = syz_open_dev$sndctrl(&(0x7f0000000080)='/dev/snd/controlC#\x00', 0x2, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0x40045542, &(0x7f0000004000)) ioctl(r0, 0x3, &(0x7f0000000100)="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") r1 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x200, 0x0) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r3 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x20, 0x0) r4 = gettid() timer_create(0x0, &(0x7f00005b6000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$FUSE_DEV_IOC_CLONE(r1, 0x8004e500, &(0x7f00000000c0)=r3) tkill(r4, 0x1000000000016) close(r1) 04:53:06 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) sendmmsg(r0, &(0x7f000000ac80)=[{{&(0x7f0000000080)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000000180), 0x0, &(0x7f0000000180)}}, {{0x0, 0x0, &(0x7f0000002bc0), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x10}}], 0x4000319, 0x0) remap_file_pages(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000002, 0x6, 0x40) 04:53:07 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x2, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:07 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$can_raw(0x1d, 0x3, 0x1) bind$can_raw(r1, &(0x7f00000001c0)={0x1d}, 0x10) setsockopt(r1, 0x65, 0x1, &(0x7f0000000000)="762c2a4e513638791f2f636782e107894aaf0545b750684fc5d74b561a260e30216c9c2c80b484c700f6228bffffffdf201c8c108c85be453108776390684c06a6e3e2d493f5b1cd7c81959635665adce3b0910a714304743643f89864a5374fb2b51ba64d1646d1", 0x68) socket$l2tp(0x18, 0x1, 0x1) 04:53:07 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x1200000000000000, 0x10000) 04:53:07 executing program 1: ioctl$PIO_FONT(0xffffffffffffffff, 0x4b61, &(0x7f0000000040)="276fbaebfba40da67fc2346926397dd160977e469a0edb1e89504156cdcaccfe7b957a998b6ff2780ef521860ef8878f1f129573874f") r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) sendfile(0xffffffffffffffff, r0, &(0x7f0000000100), 0x20) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) mlock2(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$TCSETAF(r1, 0x5408, &(0x7f0000000140)={0xbbd4af7, 0x2, 0x7, 0xffffffffffffffff, 0x0, 0x8, 0x6, 0x1, 0x800, 0x4}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:53:07 executing program 3: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x8000, 0x0) poll(&(0x7f0000000100)=[{r1}, {r1, 0xc000}, {r1, 0x8018}, {r1, 0x5100}, {r1, 0x4400}, {r1, 0x80}, {r1, 0xc}], 0x7, 0xffff) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000240)='/proc/self/net/pfkey\x00', 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000280)={0xffffffff}, 0x2, 0x1}}, 0x20) write$RDMA_USER_CM_CMD_DISCONNECT(r2, &(0x7f0000000540)={0xa, 0x4, 0xfa00, {r3}}, 0xc) r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000001140)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$int_in(r4, 0x40000000af01, &(0x7f0000000040)) ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f0000000000)=0x200000000) kcmp(r0, r0, 0x4, r4, r2) sendmmsg$unix(r1, &(0x7f0000000200)=[{&(0x7f0000000140)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000680)=[{&(0x7f0000001180)="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", 0x1000}, {&(0x7f0000000300)="471d9d6a77867ab8ed7fce8bfe0aa43b6a56ddfcddcbfd51248e87b4d8f2222e90ada857d744e6322e4c36f561f16c9e89ae1b34b53303412d427eb82c359b84260a015a0fb1382530cfef176532320ff8484de3fcfe4a8a3ff1e40ad57666d1efc931b16cde4bd79c455337da0e11cab54a528952752520e0ef361b6c80c6df4b0260ed8975071af5ba34a5e3901c137639e7b0c74770c2d563c2eb0bcc874975019cd7eddb505cb709b859baf1c6879ea57b94c512a8aeb5016fed190f78f3ab4ffb36b6829b59122375737388f2aae423018753161583b03b34bb259c7a9d7acd3155a83adc05256e498c", 0xec}, {&(0x7f0000000400)="5df412dea06180d4eda63b469494e54104fb502883cca78d86545e1be102d25ea0d6b138c53804f8cdb77bc043fbf25a144b020e24c3326d192bd74be0ee6b32cf1a6fc3cb6a43b3e3794304c1420022bad4a9e90486555cabfeb973d5ba6adb74da31fd7084acd62186260b6a97e8a7406a029ea349bcd6c18441326d0800993670dcf4598d726a2f17ab00c7f86f4285981ba7ad021960c3c6b254b34870f252230f9d61e1486dc4010b384e3fd6d69b84a2fec9b0e4ad365036e49823809b02ade0506493de814805155560d2061c9e4ffe59", 0xd4}, {&(0x7f00000001c0)="e16befc0ca201e04bfbbe7fe85e9dede76f29eb04e", 0x15}, {&(0x7f0000000580)="21ee7c8527332b56a1b4ddcde00319c83a39cccf2bfdde6b775f0d95dd3e0581fbbeafe9691e105ab8a718ec445a3510df8faba9582b5a312c23de9fa21bb582454e735d9c96b0d8f59006f0ba068e727130a332fd512b0d59936ea0c768418cb501fa9c6cbb61689e4bc010f88f9209aeb14fd05e566dd7a3d99c012465b9abd5dda9c8bcf8ce68e80a268f0e05f49669a28ce2abc1e09b8114ba28e612c9e645fa23c8c71d854c30d2589d5e63e2f628e9dce00e4637db62351ca2f109300cdf7e0b77792e10f870928093f4d1fb50b37208e593cdf0e1c6ae2f3776411aef6d99e66cf2761202d1722958", 0xec}], 0x5, 0x0, 0x0, 0x80}], 0x1, 0x0) pread64(r4, &(0x7f0000002180)=""/4096, 0xfffffeec, 0x0) ioctl$VHOST_RESET_OWNER(r4, 0xaf02, 0x0) 04:53:07 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:07 executing program 5: perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x8000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mlock2(&(0x7f0000a93000/0x3000)=nil, 0x3000, 0x0) mremap(&(0x7f0000b24000/0x4000)=nil, 0x4000, 0xe000, 0x3, &(0x7f0000b18000/0xe000)=nil) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x80003, 0x0) ioctl$KVM_GET_TSC_KHZ(r0, 0xaea3) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f0000000080)={0x0, 0x104000}) mlock2(&(0x7f0000b20000/0x2000)=nil, 0x2000, 0x1) getsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f00000000c0), &(0x7f0000000100)=0x4) 04:53:07 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x9cc73c8e25000000, 0x10000) 04:53:07 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x3, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:07 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x10, 0x0, 0x2, 0x4, 0x1, 0xffffffffffffffff, 0xbb24}, 0x2c) socket$pppoe(0x18, 0x1, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x80000, 0x0) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000100)=0x7, 0x4) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$TCSETSF(r0, 0x5404, &(0x7f00000001c0)={0x2dd0, 0xff, 0x6, 0x1cc, 0x6, 0x6, 0x401, 0xffff, 0x80000000, 0x1, 0x3, 0xffff}) r2 = getpgid(0x0) ioctl$sock_FIOSETOWN(r1, 0x8901, &(0x7f0000000180)=r2) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) syz_mount_image$hfs(&(0x7f0000000200)='hfs\x00', &(0x7f0000000240)='./file0\x00', 0x40, 0x4, &(0x7f0000000500)=[{&(0x7f0000000280)="a6697da5fadab5a28b10e8a05faaaf6219", 0x11, 0x1e42}, {&(0x7f00000002c0)="e82d03d29be8fa16ba117962c9c1dfcac6398100f13395deee183d6fe3f696c554c0a4a4541027e07834d301797647e552fc5ee37c6ac5a7cc98036312c6db5dfc75c237dc8982add0cb487df37af1f450fdef98dd3d93ebfb39184bf4b3cbc6a4fcdb35da13c6e090aad5adf680f2a0eb757b67cdb21d4eef7afcea76dd9deb5bb314550a23fbecd79ab5bbaebf263234fa115ae2bcf8e848f3d0428ee49be4907d31fca328e880c5997a57eced67930ab2301e7ba5a818dc0c099b5bd7db69d252e3061e23bdede1ddec880ff6a5eab5", 0xd1, 0x5}, {&(0x7f00000003c0)="1f13f4ed9c5e1cf68cc7bb40ffd112362a2eda7ead0f66abe463b02ab8badba9b19d1cb4aabbce5da82575ec5cb0ea723c274e7a60600f33be4a3a636ff9e1562da2a95742acc0dd1845d9a4e792bd34ee8c479d81ad303ea9eaee11ed9b6a9e509eb73cd92d4ec066b7f6c212bbbbf02e59a2e1c1593671db85a1821575b551a45bd2b7949a65fd1d5cf9033b2b18e1338045aa38b9cc", 0x97, 0x9d}, {&(0x7f0000000480)="5a8ce9c6693fb433cc87c4b23e66baa31962f0c7fbb3a4ea3dd8a4a233a94d477121250a73253ec38a4f92b4dff299a8b15292b744888a1c2b4bbfba539240845f520aeb510549bdfbdc0c5bec4c1b3246a9affe6dab7d1aca56dc18c09d90870de065", 0x63, 0xf32a}], 0x109020, &(0x7f0000000580)={[{@uid={'uid', 0x3d, [0x38, 0x31, 0x32, 0x38, 0x37, 0x3f, 0x3f]}, 0x2c}, {@dir_umask={'dir_umask', 0x3d, [0x31]}, 0x2c}, {@codepage={'codepage', 0x3d, 'cp936'}, 0x2c}, {@dir_umask={'dir_umask', 0x3d, [0x37, 0x36, 0x31, 0x35, 0x31]}, 0x2c}]}) 04:53:07 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f7620") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:07 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f00000000c0)="c4824da82b66ba2100b801000000efb9270900000f323640a7650f30c4e2899c8e02000000f02046452ef3440f6fb800f0ff7fc42101dbc40f2047", 0x3b}], 0x1, 0x0, &(0x7f0000000080), 0x0) ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000001e00fb034d564b0000000001"]) r4 = shmget(0x3, 0x4000, 0x400, &(0x7f0000ff9000/0x4000)=nil) shmctl$SHM_LOCK(r4, 0xb) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae9c, &(0x7f00000001c0)={0x2}) 04:53:07 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xfeffffff, 0x10000) 04:53:07 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x7, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 177.841416] binder: 12055:12061 ioctl 8901 20000180 returned -22 [ 177.879855] binder: 12055:12061 ioctl 8901 20000180 returned -22 04:53:07 executing program 2: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) mount(&(0x7f0000018000)='./file0\x00', &(0x7f0000027000)='./file0\x00', &(0x7f0000018ffa)='ramfs\x00', 0x50, &(0x7f0000000280)) r0 = creat(&(0x7f0000df1000)='./file0/bus\x00', 0xbc9dc8fbd81cb4b1) fcntl$lock(r0, 0x7, &(0x7f0000027000)={0x1}) utimensat(r0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={{0x77359400}, {0x0, 0x2710}}, 0x100) fcntl$lock(r0, 0x6, &(0x7f0000000040)={0x2, 0x0, 0x100000001, 0x1}) r1 = creat(&(0x7f00001d3ff4)='./file0/bus\x00', 0x0) readahead(r0, 0x6, 0x5) connect(r0, &(0x7f0000000200)=@llc={0x1a, 0x336, 0x7fffffff, 0x8000, 0x40, 0x4, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x19}}, 0x80) ioctl$KVM_GET_SREGS(r1, 0x8138ae83, &(0x7f00000000c0)) socket$nl_route(0x10, 0x3, 0x0) 04:53:07 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x4000, 0x10000) 04:53:07 executing program 5: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/conn_reuse_mode\x00', 0x2, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000100)={0x4, {{0xa, 0x4e21, 0x8, @mcast2={0xff, 0x2, [], 0x1}, 0x10000000}}}, 0x88) socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x43, &(0x7f0000000000)={"49444c4554494d45520000000000004f000000000000000000b4638d03"}, &(0x7f00000000c0)=0xfffffffffffffe64) 04:53:07 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1e00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:07 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0x2400, 0x0) ioctl$KVM_SET_XCRS(r0, 0x4188aea7, &(0x7f0000000180)={0x6, 0x101, [{0x8, 0x0, 0x6}, {0x7f, 0x0, 0x2}, {0x0, 0x0, 0xfffffffffffff800}, {0x7ff, 0x0, 0x6}, {0x9, 0x0, 0x1}, {0x7ff, 0x0, 0x7}]}) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000040)=0x1f, 0x4) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:53:08 executing program 5: r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x35, 0x25}, [], {0x95}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) fdatasync(r0) [ 178.074428] QAT: Invalid ioctl [ 178.088908] QAT: Invalid ioctl 04:53:08 executing program 3: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0xe, &(0x7f0000000000)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8ffe70079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001000000b7050000230000006a0a00fe000000008500000017000000b7000000000000000000000000000000"], &(0x7f0000000340)='GPL\x00'}, 0x48) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5406, 0x7ffffa) socketpair$packet(0x11, 0x3, 0x300, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$sock_inet_SIOCSIFBRDADDR(r2, 0x891a, &(0x7f0000000180)={'erspan0\x00', {0x2, 0x4e24}}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x0, 0xe, 0xc0, &(0x7f0000000100)="f3c214cfaedc432eef762cc9ecf3", &(0x7f0000000440)=""/192}, 0x28) 04:53:08 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) r1 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000180)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xffffffffffffffff) r2 = add_key$keyring(&(0x7f0000000280)='keyring\x00', &(0x7f00000002c0)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$instantiate(0xc, r1, &(0x7f00000001c0)="e63cbb896721c39b149d11e479ae3f9d4455aaf436b539342c1aade8ebdc0a97dc4b682af212b6ee4b0536cf254b73ce388f4588e4498c426d103df59bc1fe08d2c53035628b0e991c666fd0c184209894fb214abdc3e5cfa78b94b770e79397329b0941c848c8964e68e91f526a196abaff3eb6855fff2228aec3e65cd7b2be570f9e3f9f30964a49e624f051956cf96dff549d6fb60d17e1423393759dfbc68cb2a3af8318e93e62be6d", 0xab, r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x8000, 0x0) getsockopt$bt_l2cap_L2CAP_OPTIONS(r3, 0x6, 0x1, &(0x7f0000000300), &(0x7f0000000340)=0xc) 04:53:08 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x4007, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:08 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xffffffe4, 0x10000) 04:53:08 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000480)={0x26, 'skcipher\x00', 0x0, 0x0, 'rfc3686(xts-camellia-aesni)\x00'}, 0x42e) r1 = socket$inet(0x2, 0x6, 0x7) setsockopt$inet_udp_int(r1, 0x11, 0x6f, &(0x7f0000000200)=0x5, 0x4) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x10) r2 = accept$alg(r0, 0x0, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'authencesn(sha3-256-generic,chacha20-generic)\x00'}, 0x58) sendmsg(r2, &(0x7f00000000c0)={&(0x7f0000000000)=@pptp={0x18, 0x2, {0x0, @dev={0xac, 0x14, 0x14}}}, 0x80, &(0x7f0000002680)=[{&(0x7f0000001680)="ee43658538c8e1a6bc14ac42599bd3cbc2", 0x11}], 0x100002ca, &(0x7f00000004c0)}, 0x0) read(r2, &(0x7f0000000080)=""/43, 0x2b) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x204040, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r3, 0xc1205531, &(0x7f00000002c0)={0x7, 0x2, 0x2, 0x8595, [], [], [], 0x1f, 0x0, 0x1f, 0x100000001, "e2fea9bd62bbaf6b310f61e83ebee9ff"}) 04:53:08 executing program 5: r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xfffffffffffffe3a) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, &(0x7f0000000140)={r0}) sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="dc01000034b19aba852714722140d70d7931be523839a366bbb6450b515ce43efd98990500000082200c5905b6732a56a680fb30da6226de8e897ec57a271ea64e0f77d7f6ef1fc445997053062e5ce83252e6", @ANYRES16=r3, @ANYBLOB="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"], 0x1dc}, 0x1, 0x0, 0x0, 0x20000000}, 0x8080) ptrace$pokeuser(0x6, r1, 0x5, 0x4) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000340)='fd/3\x00') accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x0) socket$netlink(0x10, 0x3, 0x0) setuid(r2) 04:53:08 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:08 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f7620") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:08 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) r1 = getpgid(0xffffffffffffffff) ptrace$cont(0x1f, r1, 0x4, 0x8) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'echainiv(echainiv(ccm(aes-generic)))\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55", 0x10) r2 = accept$alg(r0, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc4c85513, &(0x7f0000000180)={{0x0, 0x0, 0x0, 0x0, "4778bf7fbaf8e8caf49043c94e84bc6afb751c9e31871ee4d040b0f85c145cb2e40c7ce910b6fa1549e66861"}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], {0x0, 0x1c9c380}}) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmmsg(r2, &(0x7f0000005e00)=[{{&(0x7f0000004800)=@in6={0x0, 0x0, 0x0, @remote}, 0x80, &(0x7f0000005d00)=[{&(0x7f0000004c80)=""/120, 0x33ff0}], 0x1, &(0x7f0000005d80)=""/112, 0x70}}], 0x1, 0x0, &(0x7f0000005f40)) r3 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x40, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000006c0)={'bridge_slave_0\x00', 0x3000}) getsockname$unix(r3, &(0x7f0000000100)=@abs, &(0x7f0000000680)=0x6e) 04:53:08 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xe4ffffff00000000, 0x10000) 04:53:08 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x3, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:53:08 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1800, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:08 executing program 3: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") sendmmsg(0xffffffffffffffff, &(0x7f0000007fc0)=[{{&(0x7f0000000b40)=@l2={0x1f}, 0x80, &(0x7f0000000f00), 0x0, &(0x7f0000001000)=[{0x18, 0x0, 0x0, "e20d"}], 0x18}}], 0x1, 0x0) sigaltstack(&(0x7f0000001000/0x3000)=nil, &(0x7f0000000000)) rt_sigaction(0x400200000000007, &(0x7f00000002c0)={0x4004f2, {0xffffffbfffbff270}}, &(0x7f0000000240), 0x8, &(0x7f0000000100)) rt_sigaction(0x21, &(0x7f0000000040)={0xa4, {0x100}, 0x4, 0x8001}, &(0x7f00000000c0), 0x8, &(0x7f0000000140)) mmap(&(0x7f0000588000/0x1000)=nil, 0x1000, 0x4, 0x102030, r0, 0x0) syz_open_procfs(0x0, &(0x7f0000000080)='net/icmp\x00') 04:53:08 executing program 2: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)="6d6f9c98273f00") getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000200)={@loopback, @dev, 0x0}, &(0x7f0000000240)=0xc) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000280)={@local={0xfe, 0x80, [], 0xaa}, 0x2b, r1}) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x0, 0x0) pread64(r2, &(0x7f00000002c0)=""/195, 0xc3, 0x0) 04:53:08 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0xffffffffffffffff, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) open_by_handle_at(r1, &(0x7f0000000140)={0x90, 0x3, "47f178b5a4ca13379bc4eb6f8bed8a451ca23f514ef3cb0158cfba84aa78ce8ef88aaf198e57bff29d16c86f55b74242f0ec84cdaa23fe04e5b84ba0eae2b3ae611ce1abe6f38f0b20b617dcc8827e5ea7e0658b8383630226030729077b392b713984b47632015e8b54319f904c62b03c06152ff370aeea2f688398a92395a2ff7cb50beb5fe60c"}, 0x40) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x80, 0x0) 04:53:08 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x2003, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:08 executing program 3: syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0xfbfffffffffffffc, 0x8000000000000000) socket$nl_netfilter(0x10, 0x3, 0xc) syz_open_procfs(0x0, &(0x7f0000000180)='net/dev_mcast\x00') pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000000040), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) 04:53:08 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x64000000, 0x10000) 04:53:08 executing program 2: mmap(&(0x7f0000553000/0x2000)=nil, 0x2000, 0x2000000, 0x20044031, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000200)=@assoc_value={0x0}, &(0x7f0000000240)=0x8) setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000280)={r1, @in6={{0xa, 0x4e24, 0x4, @mcast2={0xff, 0x2, [], 0x1}, 0x9e}}}, 0x84) r2 = userfaultfd(0x0) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f00000001c0)={'bridge_slave_0\x00', {0x2, 0x4e20, @rand_addr=0x8}}) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000002000)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000001000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r3 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqsrc(r3, 0x0, 0x2000000000000004, &(0x7f0000013ff4)={@local={0xac, 0x14, 0x14, 0xaa}, @rand_addr}, 0xc) setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x2c, &(0x7f0000000000), 0xc) close(r3) openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x100) r4 = dup3(r0, r2, 0x0) bpf$BPF_MAP_GET_NEXT_ID(0xc, &(0x7f00000000c0)=0x401, 0x4) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000380)={0x4, [0x0, 0x0, 0x0, 0x0]}, &(0x7f00000003c0)=0x14) r5 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_MCAST_LEAVE_GROUP(r5, 0x0, 0xc, &(0x7f0000000000)={0x0, {{0x2, 0x0, @dev={0xac, 0x14, 0x14}}}}, 0x88) 04:53:08 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$RTC_IRQP_SET(r1, 0x4008700c, 0xf0d) r2 = geteuid() getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000180)={{{@in=@local, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@local}}, &(0x7f0000000040)=0xe8) setreuid(r2, r3) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:53:09 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x260000, 0x0) ioctl$BLKTRACESTOP(r1, 0x1275, 0x0) clock_nanosleep(0x8, 0x0, &(0x7f0000000140)={0x0, 0x1c9c380}, &(0x7f0000000040)) 04:53:09 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xa001, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:09 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000040)=0x0) ioctl$TCSBRKP(r0, 0x5425, 0x1) prctl$setptracer(0x59616d61, r2) 04:53:09 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f7620") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:09 executing program 5: mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00009e3ff6)='/dev/ptmx\x00', 0x0, 0x0) ioctl$VT_ACTIVATE(r0, 0x5606, 0x3ff) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='personality\x00') getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000040)={{{@in=@multicast1, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4}}}, &(0x7f0000000140)=0xe8) bind$can_raw(r1, &(0x7f0000000180)={0x1d, r2}, 0x10) ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc)) ioctl$VT_ACTIVATE(r0, 0x5606, 0x80) 04:53:09 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8700000000000000, 0x10000) 04:53:09 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x6001, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:09 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x1, 0x0) ioctl$BLKPG(r1, 0x1269, &(0x7f0000000280)={0x81, 0x3, 0x5c, &(0x7f0000000100)="64dfeb77bbf3e6a8769e95a447b306b9ff3c92395bb273e83271399e9c70b479a8af22f007d05749e7d09f743ca24104e51260fc7d67b1e7fa4753fbfa4ece3e236249ad7dd7a9aad062c71fd5187f18cdb9c290a64d8f32fa29cbc0"}) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(r0, 0x7b2, &(0x7f00000004c0)="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") getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000240)={0x0, 0x2, 0x20, 0x8, 0x3}, &(0x7f00000002c0)=0x18) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f0000000300)={r2, 0x7}, 0x8) r3 = creat(&(0x7f0000000080)='./file1\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x3fffffe) pwritev(r3, &(0x7f00000000c0)=[{&(0x7f0000000040)='I', 0x1}], 0x1, 0x40000) fallocate(r3, 0x20, 0x0, 0x8000) ioctl$fiemap(r3, 0xc020660b, &(0x7f00000001c0)=ANY=[@ANYBLOB="020000f708686933f8a4d13847b4a756"]) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r3, 0xc10c5541, &(0x7f0000000340)={0x2, 0x6, 0x10001, 0x0, 0x0, [], [], [], 0x400, 0x6}) ioctl$PPPIOCSFLAGS(r1, 0x40047459, &(0x7f0000000200)) 04:53:09 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x0, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:09 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) getpeername$packet(r1, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000000100)=0x14) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000)={0x0, 0x2, 0x800}, &(0x7f0000086000), &(0x7f0000349000)={0x77359400}, &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f0000000180)) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:53:09 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(r0, 0x406, r1) ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) 04:53:09 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x900, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:09 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x500, 0x10000) 04:53:09 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x3, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x20080, 0x0) ioctl$EVIOCSABS0(r1, 0x401845c0, &(0x7f00000000c0)={0x0, 0x4, 0x401, 0x800, 0x8000, 0x6}) ioctl$TCGETS(r0, 0x802c542a, &(0x7f0000000000)) 04:53:09 executing program 5: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f00000000c0)=0xc) r1 = syz_open_dev$dmmidi(&(0x7f00000001c0)='/dev/dmmidi#\x00', 0x9, 0x400) perf_event_open(&(0x7f0000000140)={0x5, 0x70, 0x4, 0x20033a2e, 0x100000001, 0x7f, 0x0, 0x6, 0x20, 0x5, 0x4, 0x10000, 0xfffffffffffffffa, 0x0, 0x200, 0x5, 0x0, 0x8, 0x7, 0x2, 0x8, 0x6, 0xfffffffffffffffb, 0xffff, 0x5, 0xfffffffffffffff8, 0x8, 0x2, 0x100000000, 0x800, 0x7fffffff, 0x7, 0x1, 0x6b24, 0x2, 0x1, 0x0, 0x9, 0x0, 0x6, 0x1, @perf_config_ext={0x3, 0xff}, 0x1020, 0x0, 0x1, 0x0, 0x9, 0x2, 0xe5}, r0, 0xc, r1, 0x1) syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0x9, 0x480) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = getpgid(0x0) socket$nl_route(0x10, 0x3, 0x0) prctl$setptracer(0x59616d61, r2) 04:53:09 executing program 2: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x10040, 0x0) ioctl$TUNGETSNDBUF(r1, 0x800454d3, &(0x7f0000000080)) ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") r2 = socket(0xa, 0x2, 0x0) getsockopt$sock_buf(r2, 0x1, 0x80000000000002e, &(0x7f0000b56f40)=""/192, &(0x7f0000000000)=0xc0) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000000c0)='reno\x00', 0x5) 04:53:09 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000100)) r2 = getpgrp(0x0) setpriority(0x1, r2, 0x5) getsockopt$bt_l2cap_L2CAP_CONNINFO(r1, 0x6, 0x2, &(0x7f0000000140), &(0x7f0000000180)=0x6) 04:53:10 executing program 5: r0 = accept(0xffffffffffffff9c, &(0x7f0000000280)=@nfc, &(0x7f0000000300)=0x80) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f0000000340)={0x0, @in={{0x2, 0x4e20, @broadcast=0xffffffff}}, [0x3ff, 0x1, 0x40, 0x5, 0x7, 0x0, 0x6, 0x5, 0x2, 0x0, 0x0, 0x4, 0xfff, 0xffffffffffffff86, 0xffffffff]}, &(0x7f0000000440)=0x100) setsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000480)=@assoc_value={r1, 0xfffffffffffff8fc}, 0x8) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x40000, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(r2, 0x29, 0x45, &(0x7f0000000200)={'icmp6\x00'}, &(0x7f0000000240)=0x1e) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000008f00)={'tunl0\x00'}) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000006000/0x18000)=nil, &(0x7f00000001c0)=[@textreal={0x8, &(0x7f00000000c0)="0f0f1ba00873850f01d1ba4000b8a989ef660f2ac3ba4000b85700eff3cfbad00466b8b200000066ef3e0f38003abaf80c66b8a206ef8766efbafc0cec", 0x3d}], 0x1, 0x0, &(0x7f0000000200), 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000100)={0x6, 0x8001}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000140)="65d9f3ba2000b0e1eed9ff66b8c4b800000f23c00f21f86635000005000f23f80f01d1baf80c66b8a322e48266efbafc0cb09dee6726670f32670fb2aec1cb0000ff22c02200", 0x46}], 0x1, 0x0, &(0x7f00000000c0), 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 04:53:10 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x1800, 0x10000) [ 180.134153] binder: 12289:12293 ioctl 541b 20000100 returned -22 [ 180.145247] binder: 12289:12293 ioctl 541b 20000100 returned -22 [ 180.248207] kvm: pic: single mode not supported 04:53:10 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:10 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x1000, 0x2) ioctl$IOC_PR_RESERVE(r1, 0x401070c9, &(0x7f0000000140)={0x1f, 0x1b1d}) ioctl$TCGETA(r0, 0xc0045878, &(0x7f0000000040)) 04:53:10 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1900, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:10 executing program 2: syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c2000000000000000000080045000030000000000067927800000000ffffffff21009078000000004000000065886296f7fa8fcbd4180000000000000000ac14ffbbe0000001070000e0000002ac140000ac14ffaa7f00000100"], &(0x7f0000ea3000)) 04:53:10 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x6400000000000000, 0x10000) 04:53:10 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x2) bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x3f, 0x0, 0x5, 0x0, r1}, 0xf5) bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0x8, 0x5, &(0x7f0000346fc8)=ANY=[@ANYBLOB="180000000000000000000100000000007b1ac0ff000000000000000000000000950000000000001f"], &(0x7f0000000000)="47504cc000", 0x8, 0x1ac, &(0x7f00001a7f05)=""/251}, 0x48) 04:53:10 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x10182, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:53:10 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet6(0xa, 0x5, 0x0) bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23}, 0x1c) listen(r1, 0xccc) setsockopt$sock_int(r1, 0x1, 0x2e, &(0x7f0000000040)=0x3, 0x4) recvmmsg(r1, &(0x7f0000005fc0)=[{{0x0, 0x0, &(0x7f0000005f00), 0x0, &(0x7f0000005f40)=""/68, 0x44}}], 0x1, 0x0, &(0x7f0000006180)={0x0, 0x989680}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r2, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) 04:53:10 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x500000000000000, 0x10000) 04:53:10 executing program 3: syz_fuseblk_mount(&(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)='.\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x200000, 0x0) setns(r0, 0x0) 04:53:10 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1600, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:10 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x0, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:10 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:10 executing program 3: r0 = socket$inet6(0xa, 0x7ffff, 0x60000000) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = accept(r0, &(0x7f0000000040), &(0x7f00000000c0)=0x80) setsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000180)={0x7, 0x5}, 0x2) clone(0x0, &(0x7f00000013c0), &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000001440)) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f00000002c0)={0x1, &(0x7f00000001c0)=[{}]}) ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000)) 04:53:10 executing program 2: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$fou(&(0x7f0000000080)="666f751d") r1 = dup(r0) ioctl$VT_SETMODE(r1, 0x5602, &(0x7f0000000000)={0x401, 0x8000, 0xffffffffffffffbb, 0x1, 0xffff}) 04:53:10 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x3f000000, 0x10000) 04:53:10 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x2004, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:10 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) fchdir(r0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'ipddp0\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x9, 0x14, &(0x7f0000000180)=@raw=[@exit={0x95}, @map={0x18, 0x7, 0x1, 0x0, r1}, @ldst={0x2, 0x0, 0x6, 0x3, 0xe, 0x100, 0x4}, @initr0={0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x64be}, @map={0x18, 0xb, 0x1, 0x0, r1}, @ldst={0x3, 0x0, 0x6, 0xf, 0x9, 0xfffffffe, 0xffffffffffffffff}, @call={0x85, 0x0, 0x0, 0x3}, @map={0x18, 0xa, 0x1, 0x0, r1}, @generic={0x4b, 0x20cf, 0x4, 0x6}, @jmp={0x5, 0x5, 0xb, 0x5, 0x0, 0x0, 0x4}], &(0x7f0000000040)='syzkaller\x00', 0x4, 0xad, &(0x7f0000000240)=""/173, 0x41000, 0x1, [], r2, 0xb}, 0x48) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000380)={{{@in=@dev, @in=@multicast2}}, {{@in=@dev}, 0x0, @in=@local}}, &(0x7f0000000480)=0xe8) 04:53:10 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:10 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000028fc8)={&(0x7f0000007ff4)={0x10, 0x0, 0x0, 0xfffffffffffffffe}, 0xc, &(0x7f0000000000)={&(0x7f0000023000)={0x14, 0x20, 0xaff}, 0x14}, 0x1, 0x0, 0x0, 0xeed595e661a9d8f1}, 0x0) 04:53:10 executing program 3: r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x698, 0x400a00) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080)={0xffffffffffff5eca, 0x4, 0x747, 0x5233, 0x6}, 0x14) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syz_tun\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f00000002c0)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="280000001300070f42a41e424da9050020000000", @ANYRES32=r2, @ANYBLOB="000000000000000008001a0004000000"], 0x28}, 0x1}, 0x0) 04:53:10 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xf, 0x10000) 04:53:10 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) [ 180.248217] kvm: pic: level sensitive irq not supported [ 180.891364] binder: 12368:12375 ioctl 8933 20000100 returned -22 [ 180.926348] binder: 12368:12381 ioctl 8933 20000100 returned -22 04:53:11 executing program 2: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x2000, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0}, &(0x7f0000000180)=0xc) ioctl$TCXONC(r0, 0x540a, 0x6) ptrace$getregset(0x4204, r1, 0x202, &(0x7f0000000b40)={&(0x7f0000000ac0)=""/119, 0x77}) sendmsg$nl_generic(r0, &(0x7f0000000a80)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000a40)={&(0x7f00000006c0)={0x35c, 0x22, 0x4, 0x70bd26, 0x25dfdbfc, {0xe}, [@nested={0x4, 0x8c}, @generic="d760023fa33f8ebe5d8182dd030caf7fd45aeb3e47543d63bc2bd0a786c96f03ecefff6f6033585bbf2288c427e9cf7ce5c7fea3c95540bbee9883052ee30ffa42365239c4b99ed121535106612f119fe10742a637660167566077ef4d5844682a5446da84a71d08b9caf1036a8fe05e810da717e974fc93f94ca16d4d838f89c2b746ed5e762c87e532ed4d3f1ad39628f9439e3fdc3d67484874e2a76585023d0db2296786a5140881132f85d601da1e542053fb7ef769ce8e2d", @typed={0x8, 0x88, @pid=r1}, @nested={0x1cc, 0x18, [@typed={0x8, 0x3a, @fd=r0}, @typed={0x8, 0x12, @pid=r1}, @typed={0xe0, 0x81, @binary="3b9fe9110f88cd3321bd213319f4d898caba64ebf3bdfdfe5d098d4174f99e134cde6fcb31b37e7a08788ba493dd81e48359343b4209784634791392e7c30a47edfa46deae5b10250106760fc546413f28f73a7094cbb1422e8f74cffe194cb04e98edf9df1f6ae37f411b1953be9266b31235581ea46aa8d61b2b7d984065833a6c528c4e25f2ec42e22260ae873d309d68c7961a0c4044258f0b850b6e78e7c5fd3b4b2bfbaf9a49c94a172c02338b3c198599c29e78aaa11bb27b7bbe31ca799ce4cd317ef7539c9657f176a378c6ec1c70d74576706d32a25ec5"}, @generic="c25f010776491866af73480adbb33c893376a8d7623b233de9082ae9ee6d91bdc468654eb0b618e0ef2b08dcac726d74b636dfff04b60ba77183f84d0c3885e846461e8f27b32011d4b1786e2ffd0991410238bbe073ab5b0ec4ccd6e09d16213b131d7994f74479cfac3a2b096857b34eb653fd3f8e282bb8338ebb92072e1ac1faff573db0380b40018b10f6ac0226fc3023f2d8382674a7463b6cecc0d987026a", @generic="c77fd8c203953db341bf2934ff1f345030177a33a7317aa666dd6b4d2bdf9f19d0dec5de1646e25d8c6c9d8987a7057df26261b0"]}, @nested={0xac, 0x52, [@typed={0xa8, 0x50, @binary="7fe54d1229fba98ce51af3f3e695e3f95fc327074faed3b7c5a4ed9cf518d44c124843765987fa4a1589f4a416bb907fbe5aa10f35b3b5898ba3a9e3fd10abfc1df368bf9e87ba6f03b296d758fa960a8f5a184c7369bacb081e63cc3da007c820fa27f22ab74f76342b7f63b23c6a5030e45dc924d452bb1ce551114db1ec749894b52987e9857e50dff45b5abb2b0de49234efee9f640dc75b5c4d7554c2d587e0c6e5"}]}, @generic, @typed={0x8, 0x7f, @u32=0x400}]}, 0x35c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) r3 = getuid() getresuid(&(0x7f00000001c0)=0x0, &(0x7f0000000200), &(0x7f0000000240)) sendmsg$nl_netfilter(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2040000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)={0x220, 0xe, 0x0, 0x0, 0x70bd27, 0x25dfdbfb, {0xf, 0x0, 0x9}, [@typed={0x8, 0x42, @str='\x00'}, @nested={0x68, 0x28, [@generic="121b80a4b63cbafae0c670a055e1fa3e40a7684fa6d91db181b091db49d9099a1055732e5d2579fad1a9c6aed92dcedf73f5b78d548cb432867d0cde9252ef3209f0e4a10396232684613ee30eb730967733c3a8b39a9345bffecb95cb3f182db5fcb7d2"]}, @nested={0x4, 0x1d}, @nested={0x198, 0x2f, [@typed={0x8, 0x94, @uid=r2}, @generic="39201088e1f82678ebde281f61d1b5abf3ff37ae3568f95ff3b4a2ceab9c7033822ec6d9ccb31ef5985bb336ec5803a0f9ef908696857ad75e061b8c7e5d9b19b49998", @generic="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", @typed={0x4, 0x78}, @typed={0x8, 0x80, @uid=r3}, @generic="0cb0a25b3f62fe1cc292a6cde45c2dae7233a8e92fe5556c4b5c7aab0c8f1db8511513a665d8e02ff639a91393", @typed={0x8, 0xd, @uid=r4}, @typed={0x8, 0x45, @fd}]}]}, 0x220}, 0x1, 0x0, 0x0, 0x40}, 0x15) getrandom(&(0x7f0000000000)=""/16, 0x10, 0x3) ioctl$EVIOCSKEYCODE(0xffffffffffffffff, 0x40284504, &(0x7f0000000140)) openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x385003, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0)='IPVS\x00') ioctl$KVM_SET_SIGNAL_MASK(r0, 0x4004ae8b, &(0x7f0000000300)={0xa2, "aeabc7464f1f874d18d7ddc3ac1840b3c2f246a2195bcecd2dca5e8f232ffd23c3cd4e6119aa8cf30b417ddb02cee58f6761e6cfe31ad93dd362c552e5af6284a0d8802aa7ab29a42332b7105a6d8ce3cee48d50e4d693825bb5eb4e421b769d73f9ab0245a39a09afdc5da4581d9fee23e77594de4144b3a469ab6b06db7e92a7f9ae8d01bcf723061731593713f62c50c15a884b2170f48f212202776275a9014e"}) 04:53:11 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0xfffffffffffffffe, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) 04:53:11 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xe007, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:11 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:11 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x391041, 0x0) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r1, 0x408c5333, &(0x7f00000003c0)={0x8, 0x7f, 0xbfb6, 'queue1\x00', 0x1}) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x1, 0x0) ioctl$EVIOCGSW(r4, 0x8040451b, &(0x7f00000002c0)=""/202) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0xfffffffffffffdc3, 0x5a6d8d97750cae5e) r5 = dup2(r2, r3) setsockopt$inet_dccp_buf(r5, 0x21, 0xc, &(0x7f0000000100)="0301acb4940f5726e2b4f903d73d7279f0c0b0db859b794df7a7929b68449249fe1b108b0554f1a11b907a67268aeac519aef0e2d1ca684228fb9b62e26925cafbb4772dfd7ecf89240a5faf148fe0ead813adb9c9a5876c45f5016d75290a4bd649ac46a1b6efe5ec4981a45eb60668b77a0d2e4b50a7c7e29aae4172bf6573bdab2b8e4e3b65896c0f55bda993ac5cadda89ba001f75c65a2e4c88c89f90145595cc6841a09ffff1e271cc19c284c82a626eaee07b71148c52849448b17ae043566a697e0f1a93f16468", 0xcb) 04:53:11 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x20030000000000, 0x10000) 04:53:11 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x400, &(0x7f0000000040)="025cc83d6d345f8f762070") r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='environ\x00') getsockopt$inet_mreq(r1, 0x0, 0x27, &(0x7f0000000080)={@rand_addr, @remote}, &(0x7f0000000140)=0x8) pipe(&(0x7f0000000880)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r2, &(0x7f00004e8000)=[{&(0x7f0000004980)=';', 0x1}], 0x1, 0x0) mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, &(0x7f00000000c0), 0x20, 0xfffffffffffffffe) 04:53:11 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x0, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) [ 181.722743] Unknown ioctl -2143271653 04:53:11 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xff5f000000000000, 0x10000) 04:53:11 executing program 1: pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x48f, &(0x7f0000000180)={0x2e, @broadcast=0xffffffff, 0x4e23, 0x1, 'lblc\x00', 0x11, 0x8, 0xf}, 0x2c) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x20080, 0x0) getsockopt$bt_l2cap_L2CAP_CONNINFO(r1, 0x6, 0x2, &(0x7f0000000040), &(0x7f00000000c0)=0x6) r2 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x2) ioctl$BINDER_THREAD_EXIT(r2, 0x40046208, 0x0) mmap$binder(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1, 0x8810, r2, 0x0) 04:53:11 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8004, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:11 executing program 2: clone(0x200, &(0x7f0000b6b000), &(0x7f0000000100), &(0x7f0000000200), &(0x7f00000000c0)) mknod(&(0x7f0000000000)='./file0\x00', 0x1044, 0x0) execve(&(0x7f0000000040)='./file0\x00', &(0x7f0000000380), &(0x7f00000002c0)) r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f0000000140), &(0x7f0000000180)=0xc) r1 = syz_open_procfs(0x0, &(0x7f0000000300)="706572736f6e616c697479005d82a7336489ce5bda0a0fd81d814eb15432b3e583f4f58ba51cf65347e346e484375f3b177c09b3ee9b0c6ce0e3cc7ec8ee067664c3c2f573c428867a4d951c87cc1fa9cae30a9ffbfbfacd2225d361be19813b9e68acf48d347c6b555a3e1966d01843c9d2ada1756f47af2b2c258d55e7f160c7de2af9fbec1f20bc0a3cc530f466713fdf5a6578d7861a5dae4285985a4a105addaf3169870d02f2cf8769d76091230874707ad3d5c6818d9477671c483acc99af30b48c4210512ee897a9e894cca176f070ec022efc6fe11517d648f1d3b6aa7d858f893e9cba3c4f497bc1b0cc3745ae9de49f89152074f7604f276665c232239ad8af449406ea4d17fd30a4aca89fbf9f88b0b67958b80634f40914a58f7f8ce6a61075436e6b685d8b97b1fb09822e1e8f4447ec62e4be7a9a587364747c3714dd79dc90a8a33a14eb14cbbf1cb7d145e4d29ea11518ee5c797b1a0b38d412d7cdfb3e12dcd5f780aed68f35d04446834d8cfaab2b1c871f54662ebf30c892902b6338cfb706d8db7273d97a816b4c23910cc5794a") ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000080)={{0x2, 0x4e24}, {0x6}, 0x20, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xb}}, 'bcsf0\x00'}) pread64(r1, &(0x7f00009f3000), 0x21d, 0x0) lseek(r1, 0x208, 0x200010000000000) open$dir(&(0x7f00000001c0)='./file0\x00', 0x27e, 0x0) [ 181.756088] Unknown ioctl -2143271653 04:53:11 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:11 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$l2tp(0x18, 0x1, 0x1) r2 = socket$inet6_udp(0xa, 0x2, 0x0) r3 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r3, &(0x7f00005fafd2)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x0, @multicast2=0xe0000002}, 0x4}}, 0x2e) connect$l2tp(r1, &(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @rand_addr}, 0x4, 0x1}}, 0x2e) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2, 0x32, 0xffffffffffffffff, 0x0) ioctl$PPPIOCGL2TPSTATS(r1, 0x8921, &(0x7f0000000180)) accept4$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x2711, @any=0xffffffff}, 0x10, 0x80000) 04:53:11 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x23) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000940)={{{@in6=@mcast2, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@loopback}}, &(0x7f0000000a40)=0xe8) sendmmsg(r0, &(0x7f0000000e00)=[{{&(0x7f0000000080)=@vsock={0x28, 0x0, 0xffffffff, @host=0x2}, 0x80, &(0x7f0000000700)=[{&(0x7f0000000180)="f7906323cf065c5b0f4b4bb9ede3897817b805f750ba5d1a695b93ea0cf107dad7ac36772426fee1d76a2fbc27f795a71832e600630675f919e422502ee86c23682f0d7b448c197d8fcbd8a9699e1be82257c5070cf49020444eafd47bd45f084bfa09967a3682bceb4764d25d2a94e54c64e1ec22e26a06617eaaf5e7c2e28e1a131b93d8027a4b3913d02fa084c96ea7d28ac7f4dabc153819760b30a8a5c0e12141cd3c9ce6fda73409610a63237e0bd42b73395ee1fc240f49e9aaa87f5094b75dedc14a4f50d849a28289fb9cb0ee6e9cd6148111fbcaa9fa37ac981a97813124fa75be24b4f980fdaed7d7be79ae", 0xf1}, {&(0x7f00000002c0)="6c6d81ba97a87eb3eeb269710c1fde4e4dff932c12e2f4b2e3118038a963bd2f865776fc45ce7e2a690a215322e9fd3d40acd7ac8431844d7de6b676dd7e6e658f0731bd90b377a3bf02ef2b9de49d9bfa97952e6d48d0a181a5ffa798a1a7330993cc6c25cd4ec014e94439285c02f5deec199eb3fb2b55842642d1f0f683c74ecf1a7517aa502d8fd9e1fb60427d993871f019e2b4ffb09ed175eea7c9c9e24e7c0a504790598dd53fd98c55b475b798e5074b9aa9dd1caf31167c599628b9a4e5e85d5d9558dc77223670e0ae49", 0xcf}, {&(0x7f00000003c0)="385c3f92374bc9ebb5a190277e44b6384e1debda712d62b87937fd9e9eb891ddc30f44e68be72d728f51e9e882871de5a8d74d4aea2543c19746b1e7e913ba76f3d4000b6fa0959aa563d8a854266b17b77d27d57662c0cb41183eb55853064aabf577090770d960af2e730acda15ed9be70f34fe448877c1effa4ddaf974ebf2f0a0fcf2de94bce311ec0689865a5ef0f6c2630f5c88fd9e2edf19f2804cb020ff0277c701907adf773bc51e062f945994a33070e8e1562752e1ca99c2dfaeb75cefb4c81da0d54876e881393287dfc3ee6e933c7d74fde873e9957d6d64527db9688e0136902f7735ac2afac", 0xed}, {&(0x7f00000004c0)="c38c762790e859b29783911ec8549fbf34db68a448a5fa2a3aa1b71cbd449035fccfa363a010e240b0ae982fab3b99d78f3ac96824ee415d023c42a5a571287f85b880247dff02f25d1b3411cb09c4545a828ed5f47ef4864d25bac4bcbb1587f4d4d4d0251ab989404325b46c60b2142d6206cd001f18e54ac7dec8", 0x7c}, {&(0x7f0000000540)="f52a1acbbdf041b301a785f9c9c6f43bf29cd398e324edcfe1f75f53dc79530c7f03bb41", 0x24}, {&(0x7f0000000580)="b84de1d8fe37a22ae046e7b2a4823c7f0825a7aba0591a97555c588a22790b35f6fa9a8211cf4a95a64f1ea2a61c45cf658c5b0cfb18ec0b9b1702bc021d335eaec4259a0f44b20b6db12e2314926c5432046858f5de2fd63bff09e0d8f348bc562ed47dec3bad821fb2a15969dd2a2923bb3eddd8da5481154b1cee8f4e507f4f99d389041b9d175e3adec9a6ece88517a0c08112269d40f8741de8549a8b11f97e", 0xa2}, {&(0x7f0000000640)="9cdcc8975a1a29c0658c031acd5b1bb12374978ea8f4", 0x16}, {&(0x7f0000000680)="3a42dfeb6a4d5b6ca984959b73059403bf5014670871e3a53fe1d44d32b017eb634a4ee13e2d81d05e81c47d67e5b5d3ed2910a37b28e07337d7e3b2487c59d745aae62d0f1213a38ea504c36367c7f5f78f42f41258e37b7d61104b7f06b2ff6922aa11f66be673ed", 0x69}], 0x8, &(0x7f0000001480)=[{0x28, 0x0, 0x7, "3c66d4fb324043556348adf761161094b3ad13d8"}, {0x1010, 0x13f, 0x5622, "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"}, {0x18, 0x13f, 0xfffffffffffffff8, "dd0f"}], 0x1050, 0x24048000}, 0x6}, {{&(0x7f0000000a80)=@xdp={0x2c, 0x1, r1, 0x1c}, 0x80, &(0x7f0000000d00)=[{&(0x7f0000000b00)="365f8e5a3ad13a10049d490c477a24a475d4733782df0a73b3e9404e1858abaa8cffd208079c86b75d1ff8b14cafa64842ee83b0ddb9e1be95", 0x39}, {&(0x7f0000000b40)="8bbba4bdbcc240ddb61545ae0da5de17d315a3a264dc50e1d33c1455f7932007f87f2708c09fe8cd7b6d1b92309e", 0x2e}, {&(0x7f0000000b80)="6c8f1c8b2f2d4507ba607b6b77f540892e78f8bdb2368410c454c2887e592e2a3ac1eda2594a14739e49f544e61398a80920260f4d61def532297fd52337aa5b9a04955231242f6f86700cceec809e843f347b4bad28339f55e0f8f509b4883c7b4f7763c171eba6de7d2986405b61bfc6fa64c22be9300664a7dbeab8a321babe30c2ba25e2819f11b48c161f79305a24c0c8d6ef67b371b8ad7244cadec82ed78d51407783449b2e3f382fe4894bd1b68c6f", 0xb3}, {&(0x7f0000000c40)="3b4aca08cb190e000cbdf7d5f339456540", 0x11}, {&(0x7f0000000c80)="94354014339516fa7fe0136ce3333b684e0eb23233ebad8377f2c34a47fc6ae2ea946d5bc118bba0a946b18cebccd4092327b8ea237f045358d161a2bb365f3c8921260429a6c3288777d1a54e2822ae575c", 0x52}], 0x5, &(0x7f0000000d80)=[{0x58, 0x114, 0x0, "f08bf58db1d9a6e43335765e7827faaba3c84e5e1b5ad64bd39adfe6f369d4f6350794eca7ef066ec1346028a62039935395181dbb1ad84edf7ac96d8d735752827d00ee6e"}], 0x58, 0x8000}, 0x8}], 0x2, 0x8001) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000), 0x0) r2 = accept$alg(r0, 0x0, 0x0) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r3, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_init_net_socket$llc(0x1a, 0x2000002, 0x0) recvmsg(r2, &(0x7f0000001440)={&(0x7f0000000000)=@sco, 0x80, &(0x7f00000013c0)=[{&(0x7f0000005a80)=""/4096, 0x20005e83}], 0x1, &(0x7f0000001400)=""/6, 0x6}, 0x0) 04:53:11 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x5000000, 0x10000) 04:53:11 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x4001, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:11 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x1000000, 0x0) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) ioctl$ASHMEM_SET_PROT_MASK(r1, 0x40087705, &(0x7f0000000040)={0x3, 0x9}) 04:53:11 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSWINSZ(r0, 0x5423, &(0x7f0000000000)={0x19}) read(r0, &(0x7f0000000080), 0x0) syz_open_pts(r0, 0x8000) 04:53:11 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000026000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000000)="0f01250f675c00f20f352e0f30dfa800300fc79e925f0f080f0665b1050f01cb", 0x20}], 0x1, 0x61, &(0x7f0000000040)=[@cr4={0x1, 0x100004}, @cr4={0x1, 0x42}], 0x2) ioctl$KVM_RUN(r2, 0xae80, 0x0) 04:53:11 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:12 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000180), &(0x7f00000001c0)=0x10, 0x80800) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000200)=@assoc_value, &(0x7f00000002c0)=0x8) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f00000004c0)='./file0\x00', 0xe000, 0x1, &(0x7f00000003c0)=[{&(0x7f0000000040)="eb3c906d6b66732e666174000204010002000270f7f8", 0x16}], 0x80001c, &(0x7f0000000240)=ANY=[]) accept$packet(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000340)=0x14) setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000380)={r2, @empty, @multicast2=0xe0000002}, 0xc) r3 = creat(&(0x7f0000000240)='./file0/file0\x00', 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000080)}}, 0x20) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={r3, 0x3, 0x1, 0x0, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5}, 0x20) ftruncate(r3, 0xc) 04:53:12 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xb00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:12 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:12 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x18, 0x10000) 04:53:12 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000840)={0xffffffffffffffff}) getpeername(r1, &(0x7f00000007c0)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @local}}}, &(0x7f0000000600)=0x80) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000740)={0x0, 0x40, 0x6, 0xfffffffffffffffc}, &(0x7f0000000780)=0x10) setsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000700)=@int=0xffffffff, 0xfffffffffffffff9) r3 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$KVM_SET_BOOT_CPU_ID(r4, 0xae78, &(0x7f00000006c0)=0x1) pselect6(0x40, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000), &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) writev(r0, &(0x7f0000000500)=[{&(0x7f0000000180)="1797ed5f3efa21121454afdcea55e0091ffd8f6fac2c3b10b557368c8458be00e2f342a11072a486e7a1a0d5d480a7d410785b9acd344076b91a3f4d86568a2ce33dbd0f8146f09a78fe9f805ccba07ec6d850dec062eca3e5d96fe6acdff9b93e3865cea0fa1ac4c3ba835bb2fea23f8a83871ec01e63e9e1b63fc66cb112cfc767ac5a247380ac4fe026fe097d3be7b38d040875686252a83e4e2e5f6c3c431db5fcff971d7dadce61fb5560c75ea46200d6a3e8df42194ecf88d1efd486560ac10b15fea4c109f42f150ca7f7d4d4b8cc26", 0xd3}, {&(0x7f0000000280)="17adb14dd19f862c56d6271e2b463bba7314f0020c4dd0f9288e707866910f3219fe625318a93a8eca784d96d2bea8a6a26c704d3abc95b12be19d5efad4b2e0b9b7712f0b2dc845eee6f638ed6da986e2f499dfdc6edf8b3d3345cf4642c93826ba3cd9398fdd283be8d88f1d6081fe4036e3e0e9f12a6e8a0f8fce9190f26a257cfa88abd70161ff8c84ad6190a5a985bfd75571a9d2d628fd8956fce2f0f7b53bb31ad533bc89e3dffbf63f3b619c323229c1723c044f001104d2b56f2e79556c1d1bf0f7ba0f8b48ec2e2939470f7cf260d04c", 0xd5}, {&(0x7f0000000040)="00fe86744059e3b4fdbbdaa957e3ef172382417564fcbb372b76ce20ba73d8a33d3819d9e618fcddada84c74fabff56caeb25e2b85078c171a796d116863b0", 0x3f}, {&(0x7f0000000380)="852e61f63028cbd864e1951762a01fd201c6538b85db128fdaeaac9d365f5777518c193f2a21a833f6e73c565e76744b1a1c3b20adfdc89c7455922a07b36c074c90fc5fecb39b9ca3f7c28145b4aa5ac99738da943fb1e9bc1f900aba1f50e915444e09ca31023c97012c6ce67572e5655d2626bbf0cfed8b38914f3888c1574108ac823cd03cd1e496", 0x8a}, {&(0x7f0000000100)="8bfd2e2a9528df7d989df3639c3c2355bbaa083d30b8f07452d90995dda8eb4401c0c35ad92df4418fc4f07569ef", 0x2e}, {&(0x7f0000000440)="bb715386af0a0ec57e08faaafb20d83a3f32041ffab7c5ada52783", 0x1b}, {&(0x7f0000000480)="7f9d63db3ea115c6c1ccf8ec1a7b558e60b0d6fa394555", 0x17}, {&(0x7f00000004c0)="e040927321512d", 0x7}], 0x8) ioctl$BINDER_THREAD_EXIT(r3, 0x40046208, 0x0) 04:53:12 executing program 5: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x2000000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, @perf_config_ext, 0x0, 0x0, 0x10000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0xf503}, 0xc, &(0x7f0000000280)={&(0x7f0000000040)={0x14, 0x27, 0xffffffffffffffff, 0x0, 0x0, {0xb}}, 0x14}, 0x1}, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x400000, 0x0) write$binfmt_misc(r0, &(0x7f0000000100)={'syz1', "8dd7934255b1f60fb8caab596563b0694def2798f0b5e9111b320ea883ec6dc8658dd61983"}, 0x29) ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r2, 0x40405514, &(0x7f00000000c0)={0x2, 0x6, 0x3f, 0x2, '\x00', 0x8}) 04:53:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000001c0)={0x7b, 0x0, [0x49, 0x1]}) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000000)={0x2, 0x0, [0x4, 0xb057, 0x6, 0x1f, 0x40, 0x0, 0x200, 0x5]}) 04:53:12 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1b00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:12 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140), 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:12 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:12 executing program 5: r0 = dup(0xffffffffffffffff) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000100)={0x0, 0x4}, &(0x7f0000000240)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000280)={r1, 0xa6, "637aeb98cb53f33c80c541b90554ebb408ab30195457477d924b8a48d7a51233385b049546a5f7e24cd20d9c9d843adb7378421f5689a3014d24a4fbe13e4371b7bbdc7ba83ca1a3a98167b8d6782e21000663f44f3d8e0658ab05a7c3435e93d16ebf3364c0b0b85fd31c8da5280b62c668edfc18c2ea80788a87b2ac8612b368f84c1b4732b9901519cc20f42f57db42ed400ad18c5e5b0d163e86b34a8c34e4b511f59ced"}, &(0x7f0000000340)=0xae) getsockopt$packet_buf(r0, 0x107, 0xd, &(0x7f0000000180)=""/177, &(0x7f00000000c0)=0xb1) r2 = open(&(0x7f00000008c0)='./file0\x00', 0x20141042, 0x0) ftruncate(r2, 0x280080) sendfile(r0, r2, &(0x7f0000d83ff8), 0x2008000fffffffe) fanotify_init(0x28, 0x80000) getsockopt$EBT_SO_GET_INFO(r2, 0x0, 0x80, &(0x7f0000000000)={'nat\x00'}, &(0x7f0000000080)=0x78) ioctl$sock_inet6_tcp_SIOCATMARK(r2, 0x8905, &(0x7f0000000140)) 04:53:12 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8000000, 0x10000) 04:53:12 executing program 2: r0 = socket$inet_smc(0x2b, 0x1, 0x0) getsockopt$sock_buf(r0, 0x1, 0x1c, &(0x7f0000000100)=""/237, &(0x7f00000002c0)=0xfffffcd2) 04:53:12 executing program 1: openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x80000, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r1, 0xc1205531, &(0x7f0000000180)={0x1, 0x10001, 0x4, 0xedc, [], [], [], 0x81, 0x12dd, 0x4800000000000000, 0x9, "1d840ec18f961f39eacb9a729697c785"}) openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) pselect6(0xfffffffffffffd3f, &(0x7f0000f33fc0)={0x3ffffd}, &(0x7f0000768000)={0x0, 0x0, 0x0, 0x1}, &(0x7f0000086000), &(0x7f0000349000), &(0x7f0000f14000)={&(0x7f00000000c0), 0x8}) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) [ 182.843974] unchecked MSR access error: WRMSR to 0x49 (tried to write 0x0000000000000001) at rIP: 0xffffffff81350038 (native_write_msr+0x8/0x30) [ 182.857258] Call Trace: [ 182.859901] vmx_set_msr+0x19b/0x2010 [ 182.863746] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 182.868808] ? __check_object_size+0x9d/0x5f2 [ 182.873349] kvm_set_msr+0x18a/0x370 [ 182.877119] do_set_msr+0x10d/0x1a0 [ 182.880796] ? do_get_msr+0x1e0/0x1e0 [ 182.884644] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 182.890232] msr_io+0x222/0x380 04:53:12 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(0xffffffffffffffff, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:12 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x5, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:12 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(r2, 0x0, 0x0) add_key$keyring(&(0x7f0000000240)='keyring\x00', &(0x7f0000000000)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, 0xfffffffffffffffb) [ 182.893556] ? do_get_msr+0x1e0/0x1e0 [ 182.897390] ? copy_overflow+0x30/0x30 [ 182.901351] ? trace_hardirqs_on+0xd/0x10 [ 182.905546] kvm_arch_vcpu_ioctl+0x14d5/0x36f0 [ 182.910173] ? kvm_arch_vcpu_ioctl+0x1483/0x36f0 [ 182.914970] ? trace_hardirqs_on+0x10/0x10 [ 182.919255] ? lock_repin_lock+0x430/0x430 [ 182.923526] ? kvm_arch_vcpu_put+0x420/0x420 [ 182.927977] ? __schedule+0x884/0x1ed0 [ 182.931922] ? __sched_text_start+0x8/0x8 [ 182.936103] ? plist_check_head+0xea/0x150 [ 182.940401] ? plist_check_list+0xa0/0xa0 04:53:12 executing program 5: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000000), 0x2) r1 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x80000000, 0x8000) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000080)={0x0, @empty, @loopback}, &(0x7f00000000c0)=0xfffffffffffffcec) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000100)={@local={0xfe, 0x80, [], 0xaa}, 0x4a, r2}) 04:53:12 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8800, 0x10000) [ 182.944597] ? check_preempt_wakeup+0x546/0x1280 [ 182.949423] ? plist_add+0x5f0/0x790 [ 182.953177] ? plist_check_head+0x150/0x150 [ 182.957532] ? schedule+0xfb/0x450 [ 182.961108] ? lock_downgrade+0x8f0/0x8f0 [ 182.965298] ? __schedule+0x1ed0/0x1ed0 [ 182.969305] ? lock_acquire+0x1e4/0x540 [ 182.973315] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 182.977597] ? lock_release+0xa30/0xa30 [ 182.981606] ? check_same_owner+0x340/0x340 [ 182.985978] ? rcu_note_context_switch+0x730/0x730 [ 182.990957] ? kasan_check_write+0x14/0x20 [ 182.995254] ? __mutex_lock+0x6c4/0x1680 [ 182.999359] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 183.004935] ? kvm_vcpu_ioctl+0x1ea/0x1300 [ 183.009242] ? mutex_trylock+0x2b0/0x2b0 [ 183.013371] ? futex_wake+0x760/0x760 [ 183.017210] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 183.022451] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 183.028043] ? drop_futex_key_refs.isra.14+0x6d/0xe0 [ 183.033287] ? futex_wait+0x5d2/0xa20 [ 183.037130] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 183.042358] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 183.047930] ? drop_futex_key_refs.isra.14+0x6d/0xe0 [ 183.053070] ? futex_wake+0x304/0x760 [ 183.056920] ? finish_task_switch+0x1d3/0x870 [ 183.061465] ? lock_downgrade+0x8f0/0x8f0 [ 183.065649] ? finish_task_switch+0x18a/0x870 [ 183.070191] kvm_vcpu_ioctl+0x286/0x1300 [ 183.074641] ? kvm_uevent_notify_change.part.32+0x440/0x440 [ 183.080395] ? exit_robust_list+0x290/0x290 [ 183.084753] ? finish_task_switch+0x1d3/0x870 [ 183.089290] ? lock_acquire+0x1e4/0x540 [ 183.093293] ? __fget+0x4ac/0x740 [ 183.096794] ? lock_downgrade+0x8f0/0x8f0 [ 183.100978] ? lock_release+0xa30/0xa30 [ 183.105022] ? __schedule+0x884/0x1ed0 [ 183.108951] ? __fget+0x4d5/0x740 [ 183.112444] ? ksys_dup3+0x690/0x690 [ 183.116193] ? initcall_blacklisted+0x9a/0x1e0 [ 183.120829] ? do_raw_spin_lock+0xc1/0x200 [ 183.125129] ? trace_hardirqs_off_caller+0x250/0x2c0 [ 183.130358] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 183.135512] ? kvm_uevent_notify_change.part.32+0x440/0x440 [ 183.141285] do_vfs_ioctl+0x1de/0x1720 04:53:13 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000001200)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000933000)="9147ad46390d00c80000009d4d5469d01101c2f87d13e3bf", 0x18) io_setup(0x1, &(0x7f0000000040)=0x0) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x440081, 0x0) io_cancel(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x5, r0, &(0x7f0000000180)="2d998e9adaf2acbc181d8cba18d472fb378dde5ace5a3b379f5a0655581e8ed6993b9631cf206337679e7a58496acfeda4", 0x31, 0x0, 0x0, 0x1, r2}, &(0x7f0000000140)) r3 = accept4$alg(r0, 0x0, 0x0, 0x0) sendmmsg$alg(r3, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000012c0)="03d74b536fdb5279d2ef31eaf877f19d04f2a1cf69bb4de2608fc39664de7cf62c3bcb2c4785fc90a71cc3c5fb623864", 0x30}], 0x1, 0x0, 0x0, 0x4}], 0x492492492492644, 0x0) recvmmsg(r3, &(0x7f0000000580)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000000)=""/45, 0x2d}, {&(0x7f0000000440)=""/158, 0x9e}], 0x2, &(0x7f0000000540)=""/6, 0x6}}], 0x1, 0x0, &(0x7f00000005c0)={0x0, 0x989680}) ioctl$TUNSETSNDBUF(r2, 0x400454d4, &(0x7f0000000080)=0x7) 04:53:13 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mkdir(&(0x7f00000013c0)='./file0\x00', 0x0) mount(&(0x7f0000001440)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f00000012c0)='proc\x00', 0x0, &(0x7f0000000100)) r1 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) fstat(r1, &(0x7f0000000100)) 04:53:13 executing program 5: mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x3, 0x31, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000f6bfe8)={0xaa}) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x201, 0x0) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000080)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_REGISTER(r0, 0xc028aa03, &(0x7f00000a0fe0)={{&(0x7f00005e3000/0x800000)=nil, 0x730000}, 0x200000}) [ 183.145227] ? ioctl_preallocate+0x300/0x300 [ 183.149674] ? __fget_light+0x2f7/0x440 [ 183.153690] ? __schedule+0x1ed0/0x1ed0 [ 183.157706] ? fget_raw+0x20/0x20 [ 183.161188] ? trace_hardirqs_on+0xd/0x10 [ 183.165378] ? kmem_cache_free+0x22e/0x2d0 [ 183.169648] ? __x64_sys_futex+0x47f/0x6a0 [ 183.173918] ? do_futex+0x27d0/0x27d0 [ 183.177752] ? security_file_ioctl+0x94/0xc0 [ 183.182196] ksys_ioctl+0xa9/0xd0 [ 183.185686] __x64_sys_ioctl+0x73/0xb0 [ 183.189595] do_syscall_64+0x1b9/0x820 [ 183.193499] ? finish_task_switch+0x1d3/0x870 [ 183.198037] ? syscall_return_slowpath+0x5e0/0x5e0 [ 183.202991] ? syscall_return_slowpath+0x31d/0x5e0 [ 183.207953] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 183.212989] ? prepare_exit_to_usermode+0x291/0x3b0 [ 183.218045] ? perf_trace_sys_enter+0xb10/0xb10 [ 183.222757] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 183.227638] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 183.232865] RIP: 0033:0x455e29 [ 183.236070] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 183.255370] RSP: 002b:00007f1d2bce3c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 183.263125] RAX: ffffffffffffffda RBX: 00007f1d2bce46d4 RCX: 0000000000455e29 [ 183.270441] RDX: 00000000200001c0 RSI: 000000004008ae89 RDI: 0000000000000015 [ 183.277741] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 183.285052] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 183.292360] R13: 00000000004bdce7 R14: 00000000004cc530 R15: 0000000000000000 [ 183.297715] proc: unrecognized mount option "" or missing value 04:53:13 executing program 3: pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x6, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) r2 = syz_open_pts(r1, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180)='/dev/hwrng\x00', 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000fd0ffc)=0x3) write$binfmt_misc(r1, &(0x7f0000000040)=ANY=[], 0x232) ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000000)={0x7e}) epoll_wait(r0, &(0x7f0000001b40)=[{}], 0x1, 0x0) 04:53:13 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x6003, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:13 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(0xffffffffffffffff, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:13 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x300, 0x10000) 04:53:13 executing program 1: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000009fe8)={0xaa, 0x22}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000911000)={{&(0x7f00003e3000/0x1000)=nil, 0x1000}, 0x1}) r1 = userfaultfd(0x0) close(r1) clone(0x0, &(0x7f0000001f37), &(0x7f0000001ffc), &(0x7f0000001000), &(0x7f0000001000)) read(r0, &(0x7f0000000400)=""/100, 0x64) ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000040)={&(0x7f00003e3000/0x2000)=nil, &(0x7f00003e3000/0x2000)=nil, 0x2000}) r2 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0xffffffff80000001, 0x2000) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffff9c, 0x84, 0x18, &(0x7f0000000080)={0x0, 0x8c01}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000100)=@assoc_value={r3, 0x7}, 0x8) 04:53:13 executing program 5: r0 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0xc1b4, 0x204000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f00000000c0)=ANY=[@ANYBLOB="0a000000000000000000000000000000000000000000000000e9ffffffffffffff0000000000000000"]) unlink(&(0x7f00000002c0)='\x00') r1 = syz_open_dev$sndctrl(&(0x7f0000000080)='/dev/snd/controlC#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x803, 0x5b58) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000000000)=0x3ff, 0x4) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc0505510, &(0x7f0000000140)={{0x0, 0x2, 0x0, 0x0, "00107000"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz1\x00', &(0x7f00000000c0)}) 04:53:13 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/igmp6\x00') bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'md5\x00'}, 0x58) accept4$alg(r0, 0x0, 0x0, 0x0) r2 = userfaultfd(0x0) sendfile(r2, r1, &(0x7f0000000180), 0x800) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000080)=[{0x4, 0x7}, {0x8, 0x80}, {0x2, 0xffffffffffff8001}, {0x4, 0x100}, {0x0, 0x1}, {0x7, 0x8}, {0x8, 0x80000000}, {0x8, 0x8d}, {0x3, 0x9}], 0x9) ioctl$SCSI_IOCTL_DOORLOCK(r1, 0x5380) 04:53:13 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xe002, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:13 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140), 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:13 executing program 3: futex(&(0x7f000000cffc), 0x0, 0x0, &(0x7f0000000000)={0x77359400}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc)=0x4, 0x0, 0x4, &(0x7f0000edfff0)={0x77359400}, &(0x7f0000000140), 0x0) futex(&(0x7f000000cffc), 0x1, 0x2, &(0x7f0000cc3ff0), &(0x7f00000000c0), 0x0) fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f0000000100)={0x0, 0x0}) r1 = socket(0x1, 0x2, 0x1f) getsockopt$inet_sctp_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000680)={0x8, [0x1000, 0x1, 0x8, 0x6, 0x3, 0x1, 0x0, 0x3]}, &(0x7f00000006c0)=0x14) syz_open_procfs(r0, &(0x7f0000000640)='net/sockstat6\x00') syz_read_part_table(0x180000000000000, 0x6, &(0x7f0000000580)=[{&(0x7f0000000180)="e858e0f08e2b4dd771a81a49d4da42c4ed812c682cd61d389b2c41eae8823faf643babb1c2c708c6ce3e6347dcff0c181fbf09b99abd57a538427c5d7db7ccbfc2d0cc20a58169abb19c726d4b32192b0ffb67846039b651561699a01a11876fda463716cd227db0f073167461740e0b3176722029349e0390f038bf8c225a414fe3cb8414e85c284749062f1d3119983fd42cfb678a9e5d73bfe2083fe2ffb75a63ffacf480073c2e0e2b36f110a36d7b5cb5684a916a2b398ae20d80b3126bd9ea53eaf54d7165", 0xc8, 0x800}, {&(0x7f0000000280)="89d7fb38b96f52bd8d282223a39125dedfb420fda4cd3136d249468aabd9a397edad74e6a41ffed64ba30bd6e8e9f910e0fa149bf4bab44578bf7ea6838634684016565ebf1850583620bca92abfb25671a64bd1f0981b123908a26af53459885cabdc61a1a7b35247739d1a4d44b687254d0a5961619ff2547ab53cc3f17577ea511f08862fed79006e460619a8e0f3b5cafb87fa2794e59ddede38302e671d3b4287d7b5cc146021bc8cd8f9299e7079e057ed913dc1f0872439e93a6c66b0abb962da9ea8dac190281b66388af5b660fbff88571308428485d4ad2efa8fc5d0268e0d43a95ca27ea342d1a51b2677ee0aa4", 0xf3, 0xffffffffffffff00}, {&(0x7f0000000040)="fb9f3a75cbdfea954a2e5cc99dca647adf357fcfdb4201a4166c10c15d2aa738c7297267f253b48a4ec625c71f641c15e1864fa1c52d7b54f16f8003f0235fe083ae5c81e8e108bfcf2f329fb31a220e", 0x50, 0x5}, {&(0x7f0000000380)="789fcfc8ac75a41c51d3df48ee8bf1d4d1cb0c7fd9c8f07f21320f70117cf7ee5d5a44e778ef379370c1faaf34cecaf5d982e4ab3efc8d90d8717578b95ed0ca41ad33d4065e211bb81ae05c6ccd74e232275d175f2f12dfc9c6bb70decc58e6f44a9fbe92e29f850468", 0x6a, 0x10000}, {&(0x7f0000000400)="abe9e3f9330482b6a1062c288178d9075b08538b5d0395679951b604b1c87f60c10e645e581d26eebeb6696a0b073c5b30c1594c159518a346b32658ee612acde072c1db232e05947255e089599664ff7da756a413a4f981acf9cdbea3083d682fb5ca83803f33e71ac6e1cdcaf2ffa90a560353d54b9a0e2685f3cafe7a95c5e55b9bb98ed231e094951a356b3cccfe0c41947fb7a0149b6ba868ed30cba3310f2286399dc73ff4640427cd3f12d175983db5ab12370acd0cb208fe2a6cd5027a43bec492426958abf4bf14c8df90ce3c99f0b7bc0b375bf8aae0fa74272901c6842c3d7fdec4e3da93b2de74bfb423c0", 0xf1, 0x2}, {&(0x7f0000000500)="befb15f83a77354895f25210d9563c9f51ac8e8d670b3bdcfa534bdb3774e84145a7167e1679a0805f37498154f9a409af0f7a446ccfad507a8755f3023d3656571d25d3a4ad93dff2", 0x49, 0x1b}]) 04:53:13 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000d0fff5)='/dev/audio\x00', 0x42801, 0x0) ioctl$int_in(r1, 0x800000c0045005, &(0x7f0000003ff8)=0x80) pipe(&(0x7f00000000c0)) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r2, &(0x7f0000000000)={0x1f}, 0xe) listen(r2, 0x0) shutdown(r0, 0x0) poll(&(0x7f0000000280)=[{r2}], 0x1, 0x0) write$vnet(r1, &(0x7f0000000140)={0x1, {&(0x7f0000000000)=""/53, 0x35, &(0x7f0000000040)=""/82}}, 0x68) ioctl$sock_bt_bnep_BNEPCONNADD(r1, 0x400442c8, &(0x7f0000000480)={r2, 0x40, 0x4, "611f3e52075b09dce9e85501134588507d9b3150217617a8018146099bf370e05d39760d58b76d6560f3ac31b3517608608f954bd55e59b0761d44d7f0d983f6c91f685c916d7bcda8542dc9752d7571e4215db3d013a463ea27a0f7e272b51021c0d2e5a5cac68e6082ae85e68ed6496d9acc0193d4eb303d1faf6f7c3578826d09f2d66f082dae5b6aafb5e2135a694e91f140c1c74800d2e1ffc5715ad882b7415f613f5574f70216b8e725306872833968166128f64f11165911a0127dbe4fab185e042a38cef484b6404e24c1b6b5b8e66690417968c8365e2da02de363d459a3289c9cc29f7dede06a1a26e6920f317a355c3119"}) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000002c0)={0x8, 0x0, [{0x100000001, 0x2, 0x0, 0x0, @adapter={0x0, 0x7fffffff, 0x0, 0x6}}, {0x6, 0x4, 0x0, 0x0, @sint={0x7, 0x3ff}}, {0xfffffffffffffffb, 0x7, 0x0, 0x0, @sint={0x5, 0x9}}, {0x800, 0x0, 0x0, 0x0, @irqchip={0xfff, 0x5}}, {0x0, 0x4, 0x0, 0x0, @adapter={0x17b, 0x9, 0x32e88fe6, 0x5, 0xfffffffffffffffc}}, {0x7ff, 0x5, 0x0, 0x0, @msi={0x1, 0x5866}}, {0xf7, 0x6, 0x0, 0x0, @irqchip={0x401, 0x80000001}}, {0x0, 0x7, 0x0, 0x0, @adapter={0x5, 0x1, 0x0, 0x800, 0x6}}]}) close(r1) 04:53:13 executing program 2: r0 = socket$inet6(0xa, 0x0, 0x80) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0xfffffffffffffffc, @mcast2={0xff, 0x2, [], 0x1}, 0x9}, 0xfffffffffffffedd) modify_ldt$read(0x0, &(0x7f0000000100)=""/139, 0x8b) ioctl$TIOCOUTQ(r0, 0x5411, &(0x7f0000000000)) sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480), 0x0, &(0x7f0000000140)}, 0xc100) r1 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x5, 0x8040) ioctl$RTC_UIE_OFF(r1, 0x7004) 04:53:13 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x3, 0x10000) 04:53:13 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xc004, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:13 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(0xffffffffffffffff, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:13 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xfffffff5, 0x10000) 04:53:13 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x10, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:13 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:13 executing program 2: syz_emit_ethernet(0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="cd390b081bf20180c200000086dd6002290f00383a0000000000000000000000ffff00000000ff0200000000000000000000000000010200907800000000609433dff8a0ad8900008400ff020000000000000000000000000001fe800000000000000000000000000000802a0800"], 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x0, 0x48002) ioctl$SG_SET_KEEP_ORPHAN(r0, 0x2287, &(0x7f00000000c0)=0x101) 04:53:13 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x200000000000000, 0x10000) 04:53:14 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:14 executing program 2: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x2f84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)=ANY=[@ANYBLOB="06000000", @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000000080)=0xc) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f00000001c0)={{0x9, 0x1}, {0x5, 0x5}, 0x1000, 0x3, 0x10000}) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000040)={'syz_tun\x00', &(0x7f0000000180)=@ethtool_wolinfo={0x5, 0x81, 0xfff, "c74f136ead10"}}) close(r2) close(r1) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000008, 0x1010, r2, 0x0) 04:53:14 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xfffffffffffffffb}, 0x0, 0x0, 0xffffffffffffffff, 0x0) munmap(&(0x7f00001be000/0x4000)=nil, 0x4000) mmap(&(0x7f00001bf000/0x3000)=nil, 0x3000, 0x0, 0x20000000000011, r1, 0x3f000000) dup(r0) 04:53:14 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x10000000, 0x10000) 04:53:14 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xa00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:14 executing program 5: syz_mount_image$gfs2(&(0x7f00000000c0)='gfs2\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="71756f74615f8e756100000000ffffffff"]) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/autofs\x00', 0x40000, 0x0) getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000100)={@local, @multicast1}, &(0x7f0000000140)=0xc) 04:53:14 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140), 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:14 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000080)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424ada75af1f02acc7edbcd7a071fb35331ce39c5a00000000") r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r1, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = syz_genetlink_get_family_id$team(&(0x7f0000000040)='team\x00') getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000002280)={{{@in=@multicast1, @in6=@ipv4={[], [], @multicast1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@local}}, &(0x7f0000002380)=0xe8) accept(r1, &(0x7f00000023c0)=@can={0x0, 0x0}, &(0x7f0000002440)=0x80) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000002480)={{{@in=@local, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@mcast2}}, &(0x7f0000002580)=0xe8) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000025c0)={'vcan0\x00', 0x0}) getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000002600)={{{@in6=@loopback, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @loopback}}, 0x0, @in=@loopback}}, &(0x7f0000002700)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000002740)={{{@in=@rand_addr, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@mcast1}}, &(0x7f0000002840)=0xe8) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000002880)={0x0, @remote}, &(0x7f00000028c0)=0xc) accept(r1, &(0x7f0000002900)=@hci={0x0, 0x0}, &(0x7f0000002980)=0x80) getsockopt$inet_mreqn(r0, 0x0, 0x0, &(0x7f00000029c0)={@broadcast, @multicast1, 0x0}, &(0x7f0000002a00)=0xc) bind$bt_hci(r0, &(0x7f00000000c0)={0x1f, r11}, 0xc) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000003d40)={{{@in=@broadcast, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@local}}, &(0x7f0000003e40)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000004000)={{{@in6=@mcast2, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@loopback}}, &(0x7f0000004100)=0xe8) getsockopt$inet6_mreq(r1, 0x29, 0x1f, &(0x7f0000004240)={@mcast2, 0x0}, &(0x7f0000004280)=0x14) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000004a40)={{{@in6, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@mcast1}}, &(0x7f0000004b40)=0xe8) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000007640)={'veth1_to_team\x00', 0x0}) accept4$packet(r0, &(0x7f0000007740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000007780)=0x14, 0x80000) getsockname$packet(r0, &(0x7f0000008940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000008980)=0x14) sendmsg$TEAM_CMD_NOOP(r0, &(0x7f0000008e80)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000008e40)={&(0x7f00000089c0)={0x480, r2, 0x1, 0x70bd25, 0x25dfdbff, {}, [{{0x8, 0x1, r3}, {0x44, 0x2, [{0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r4}}}]}}, {{0x8, 0x1, r5}, {0x1a4, 0x2, [{0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8, 0x3, 0xe}, {0x8, 0x4, 0x80000001}}, {0x8, 0x6, r6}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4}}, {0x8, 0x6, r7}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r8}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r9}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x100000000}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r10}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r11}}}]}}, {{0x8, 0x1, r12}, {0x74, 0x2, [{0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x3}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4}}}]}}, {{0x8, 0x1, r13}, {0xf4, 0x2, [{0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8, 0x3, 0xe}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r14}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r15}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r16}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x391074f9}}}]}}, {{0x8, 0x1, r17}, {0xf4, 0x2, [{0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0x10, 0x4, 'roundrobin\x00'}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x1}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8, 0x3, 0xe}, {0x8, 0x4, 0x101}}, {0x8, 0x6, r18}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x9}}}]}}]}, 0x480}, 0x1, 0x0, 0x0, 0x90}, 0x20000000) mmap$binder(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x3000002, 0x2012, r0, 0x0) 04:53:14 executing program 3: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000c67000)={0xa, 0x4e20, 0x4}, 0x1c) listen(r0, 0x1000008000) r1 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r1, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) accept$inet6(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, @mcast2}, &(0x7f0000000140)=0x1c) r2 = accept4(r0, &(0x7f0000000000)=@in={0x0, 0x0, @local}, &(0x7f0000000080)=0x80, 0x0) readv(r2, &(0x7f00000006c0)=[{&(0x7f0000000600)=""/187, 0xbb}], 0x1) sendmmsg$unix(r2, &(0x7f0000006180), 0x1b3, 0x0) [ 184.697279] gfs2: invalid mount option: quota_Žua [ 184.702225] gfs2: can't parse mount arguments 04:53:14 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x6400, 0x10000) 04:53:14 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xa002, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:14 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:14 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x6, &(0x7f0000000300)="025cc83d6d345f8f762070") mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount(&(0x7f0000000000)='./file0\x00', &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='sysfs\x00', 0x0, &(0x7f000000a000)) r1 = inotify_init1(0x0) inotify_add_watch(r1, &(0x7f0000000080)='./file1\x00', 0x200) r2 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0x40, 0x8e040) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000180)={0x3, 0x8, 0x8, 0xe012, 0x0}, &(0x7f00000001c0)=0x10) setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000200)={0x100000001, 0x8, 0x9fa6, 0x5, r3}, 0x10) getsockopt$bt_BT_POWER(r2, 0x112, 0x9, &(0x7f0000000100)=0x2, &(0x7f0000000140)=0x1) ioctl$LOOP_SET_BLOCK_SIZE(r2, 0x4c09, 0x4) utime(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)) 04:53:14 executing program 5: futex(&(0x7f000000cffc)=0x4, 0x0, 0x4, &(0x7f0000000000)={0x77359400}, &(0x7f0000048000), 0x0) r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0) pwritev(r0, &(0x7f0000000480)=[{&(0x7f0000000080)="6dc6d0a8454358ccbb14b2ca73b1315ab6338d0f17ca47c2eabaf5819c6c86d7d285479c1bd3d8399064c794db5c0d5b5324097ae977e53e4388abea45646695f1264c153a2a5bd2d30b29a1377164ce3d65166d6b3d12a1525bf54218a401099a3ce2be027b407c12297a56074154d7c68e2578b722a01da41454", 0x7b}, {&(0x7f0000000100)="324c2c6e9c882d91448a65a3bdcd3d1c0e39024ffbc5f39c3bc11566dbdb1d2a8a9f9c559d53d19b9ecb3ed0434e66a32982f807d5fd4d02ab8fbe29c4ca2d395737daa037f622469c1957ee813e603e6ca3939afa396cf41e1ba9e3da703248e8a8f598eff73ac2070bea2428a19524abfd232f5d", 0x75}, {&(0x7f0000000180)="174245e31fa5300bca27f843c3c528b1ddbaf7c79230e9aeb88f63d1d06fda163096c1f4fe0c3629e11bb3b2a1bfcf8180f8288039f812adef01cc798403389813233368cedc3926ed8bd32ba02b15e2fd", 0x51}, {&(0x7f0000000200)="04a79f191866120cbbc2ba9b7a8bab0f7d3086db3d459b5b8b6f344888227b5fd2733701c009a70484b71f2271954be8db4814bc4f41377e7387350b5bf13990aa", 0x41}, {&(0x7f0000000280)="835de8238eb7dc237f9b88fb931c56e37f94851de01a02146d20cb1ef20275c71b3091228cb5553cc3843a0d2204a7e7a4765df23b9951197510cac0fb3bd687c9f565084cbb90e1851be4fc51d23d54127fd9a735d9f1c79b665057f2754c0b770df5e76695d5030a1d2055163c655a84d2afba4c72da592afe6e", 0x7b}, {&(0x7f0000000300)="b3013faa4464d3897d0614303bb9f22b1f2e8f47e6373a652ce893a910a6ec2dc304d654e6205b92014ba35cfa3b898f1865a5756605ed2959511201ca5df168f4aab02d7b30ac1aac7c1aded879a5331ee7fa4ecc924e8d7a819362e0bde478cb92e3514fee77f612bffc446053693e4a8c69b99d2c8f7ed70aff", 0x7b}, {&(0x7f0000000380)}, {&(0x7f00000003c0)="84783f10a897ab4f93d29890aff4d2d778d432bb65c8c14fb87fdd2939b9c6e3ce66278085b705eaec1d801881d95eddc0455e6a0a34d5932c26f137fbc5ff7b8a342e213dacb7b2c9012877922c336bdea04f2b433e28b235bb58190f17606e62f58f0a922f8e13a984d5b7bb38", 0x6e}, {&(0x7f0000000440)="6d59502829a2979484bb3329d4a5bcec93e7", 0x12}], 0x9, 0x0) futex(&(0x7f000000cffc), 0x5, 0x0, &(0x7f00009bd000), &(0x7f0000048000), 0x4000000) [ 184.754518] gfs2: invalid mount option: quota_Žua [ 184.759470] gfs2: can't parse mount arguments 04:53:14 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x6007, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:14 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x200300, 0x10000) 04:53:14 executing program 1: r0 = socket$inet6(0xa, 0x80006, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") lstat(&(0x7f0000000180)='./file0\x00', &(0x7f00000002c0)) r1 = socket$inet6(0xa, 0x1, 0x8010000000000084) sendto$inet6(r1, &(0x7f0000000080)="e0", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @remote={0xfe, 0x80, [], 0xbb}, 0x7}, 0x1c) read(r1, &(0x7f0000000200)=""/172, 0xac) listen(r1, 0x8088) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000001c0)='\x00'}, 0x10) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000380)=@assoc_value={0x0}, &(0x7f00000003c0)=0x8) getsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000400)=@assoc_value={r3, 0x1}, &(0x7f0000000440)=0x8) r4 = accept$inet(0xffffffffffffff9c, &(0x7f00000000c0)={0x0, 0x0, @broadcast}, &(0x7f0000000100)=0x10) bind$inet(r4, &(0x7f0000000140)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) accept(r1, &(0x7f00005a4000)=@rc, &(0x7f0000000040)=0xd) 04:53:15 executing program 2: sendmmsg(0xffffffffffffffff, &(0x7f0000007fc0)=[{{&(0x7f0000000b40)=@l2={0x1f}, 0x80, &(0x7f0000000f00), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="180000eeffffff000000000000f99300e20d45fe350f9495968b582d15e1c3741548e432e6bbb934e1e71b7e74dddfb6628fec21f0d718beaab971e38d0983012aed7330af24cff9c0c7babea7bea709a1064373bae83c1966b184cf5fc57f3c4efcb59807a62cba682b0e865d8d41d53fa2e920a112d76442720fba2f903f4e886260b0821b0a7763827f06b5193290531995b2c6a3535e66c149d67b42c87f8aa1528552bb16514bbca32624cf"], 0x12}}], 0x1, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x1, 0x18802) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r0, 0x84, 0x1c, &(0x7f0000000080), &(0x7f00000001c0)=0xffffffffffffff50) sigaltstack(&(0x7f0000001000/0x1000)=nil, &(0x7f0000008ff8)) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'veth0_to_bond\x00', 0x0}) r2 = getuid() setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000440)={{{@in6=@ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}, @in6=@local={0xfe, 0x80, [], 0xaa}, 0x4e24, 0x2, 0x4e22, 0x6, 0xa, 0x20, 0x0, 0x8f, r1, r2}, {0x1ed4000, 0x3, 0x2, 0x1ff, 0xffffffff, 0xfffffffffffffff7, 0x1, 0x7fffffff}, {0xffff, 0x80, 0xfffffffffffffffa, 0x139}, 0x400, 0x0, 0x1, 0x1, 0x3, 0x3}, {{@in6=@mcast2={0xff, 0x2, [], 0x1}, 0x4d2, 0xff}, 0xa, @in=@remote={0xac, 0x14, 0x14, 0xbb}, 0x0, 0x4, 0x3, 0xffffffff, 0x80000001, 0xeb, 0x1}}, 0xe8) 04:53:15 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:15 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x108, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:15 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x12000000, 0x10000) 04:53:15 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(0xffffffffffffffff, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:15 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x0, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:15 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:15 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000180)="025cc83d6d345f8f762070") perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2000000000001, 0x0) setsockopt$inet6_int(r1, 0x29, 0x48, &(0x7f00000000c0)=0x8000000000000eba, 0x4) 04:53:15 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x3f00, 0x10000) 04:53:15 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1200, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:15 executing program 2: syz_emit_ethernet(0x2a, &(0x7f0000000040)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @link_local={0x1, 0x80, 0xc2}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0xf406, 0x0, @remote={0xac, 0x1c, 0x14, 0xbb}, @local={0xac, 0x14, 0x14, 0xaa}}, @igmp={0x0, 0x0, 0x0, @broadcast=0xffffffff}}}}}, &(0x7f00000000c0)) 04:53:15 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:15 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:15 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000180)="025cc83d6d345f8f762070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000200)={0x26, 'aead\x00', 0x0, 0x0, 'seqiv(rfc4543(gcm(aes-generic)))\x00'}, 0x58) r2 = accept$alg(r1, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmsg(r2, &(0x7f0000000300)={&(0x7f0000000000)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000000140), 0x0, &(0x7f0000000180)=""/2, 0x2}, 0x0) 04:53:15 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000180)="025cc83d6d345f8f762070") socket$alg(0x26, 0x5, 0x0) accept$alg(0xffffffffffffffff, 0x0, 0x0) add_key(&(0x7f0000000580)='asymmetric\x00', &(0x7f00000005c0)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, 0xfffffffffffffffb) 04:53:15 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r0, &(0x7f0000000180)={0x2}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x35, &(0x7f0000000140)={0x1, &(0x7f0000000000)=[{}]}, 0x10) 04:53:15 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xc007, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:15 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000), &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:15 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x4, 0x10000) 04:53:15 executing program 3: syz_emit_ethernet(0xfed1, &(0x7f000000a000)={@broadcast=[0xff, 0xfc, 0xff, 0xff, 0xff, 0xff], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0xfec3, 0x0, 0x0, 0x0, 0x0, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}, @multicast1=0xe0000001}, @udp={0x0, 0x0, 0x8}}}}}, 0x0) 04:53:15 executing program 5: r0 = shmget$private(0x0, 0x4000, 0x1fff5, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000002000/0x4000)=nil, 0x4000) [ 186.014487] syz-executor1 (12749) used greatest stack depth: 14480 bytes left 04:53:16 executing program 2: creat(&(0x7f0000000180)='./bus\x00', 0x0) link(&(0x7f0000000040)='./bus\x00', &(0x7f0000000080)='./file0\x00') 04:53:16 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xa004, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:16 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) ioctl$sock_inet_tcp_SIOCATMARK(r1, 0x8905, &(0x7f0000000200)) setxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000240)=@known='security.ima\x00', &(0x7f0000000100)="7379736673002a864f4bc00bce1bdb20637213b1e894d120715f9dc1125b042c7226eb0136d9624ea1d23374a660fe5ac173722fd367ad22e8553025a2e8be0bc5514379af7213d32b8d5d06dc8fbf2c849ed9cdefc74b03dfa9cb5a90b28b4b24d7862c3d66fca53167d5424235435a3dbb76bc7d3c42fc2e9c696114a6f888f0da85277683cfc1c4d2bf71c255a3134d64cc3fed8e97798deb8631cbf7682c9fa2ed031465aa191df922f764297cba22a8499d177f49fba940f55bbc8b723fd374f1fed78c8aeec6811d9b5879487387d56594a14c2588274de84fa27610302b3fb54172a8c910a07e7c76ea465aa68402", 0x11, 0x0) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r3 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14}}, 0x10) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r4, &(0x7f0000d65000)={&(0x7f0000de2ff4)={0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x2, 0x1, 0xffffffffffffffff}, 0x14}, 0x1}, 0x0) 04:53:16 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_pts(r0, 0x0) ioctl$TCFLSH(r1, 0x541b, 0x0) 04:53:16 executing program 1: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='/group.stat\x00', 0x2761, 0x0) perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 04:53:16 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x12, 0x10000) 04:53:16 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xe00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:16 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000014f000)={&(0x7f00003c7ff4)={0x10}, 0xc, &(0x7f00000bfff0)={&(0x7f0000006440)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000003500000a00000000000000", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x3}, 0x1}, 0x0) 04:53:16 executing program 5: clone(0x0, &(0x7f0000000080), &(0x7f0000a25ffc), &(0x7f000039f000), &(0x7f0000000040)) waitid(0x0, 0x0, &(0x7f0000001ff0), 0xc1000006, 0x0) 04:53:16 executing program 1: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) mknodat(r0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r1 = dup(r0) r2 = dup3(r0, r1, 0x0) linkat(r0, &(0x7f0000000040)='./file0\x00', r2, &(0x7f00000000c0)='./file1\x00', 0x0) faccessat(r2, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) 04:53:16 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x1000000000000000, 0x10000) 04:53:16 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:18 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000100), 0x0, 0x20000004, &(0x7f000031e000)={0xa}, 0x1c) 04:53:18 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) connect$inet6(r0, &(0x7f0000966fe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) sendto$inet6(r0, &(0x7f0000000140)='h', 0x1, 0x0, &(0x7f0000000200)={0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xaa}, 0x6}, 0x1c) 04:53:18 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000), &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:18 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_pts(r0, 0x0) ioctl$TCFLSH(r1, 0x540b, 0x0) 04:53:18 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xd, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:18 executing program 5: 04:53:18 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xf00000000000000, 0x10000) 04:53:18 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:19 executing program 5: 04:53:19 executing program 1: 04:53:19 executing program 2: 04:53:19 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0xe003, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:19 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x600000, 0x10000) 04:53:19 executing program 3: 04:53:19 executing program 1: 04:53:19 executing program 5: 04:53:19 executing program 2: 04:53:22 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x1800000000000000, 0x10000) 04:53:22 executing program 3: 04:53:22 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x700, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:22 executing program 5: 04:53:22 executing program 1: 04:53:22 executing program 2: 04:53:22 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000), &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:22 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(0xffffffffffffffff, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:22 executing program 2: r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0xa043, 0x0) r1 = epoll_create(0x3ff) dup2(r0, r1) write$P9_RREADDIR(r1, &(0x7f00000000c0)={0xb, 0x29}, 0xb) 04:53:22 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x0, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:22 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") unshare(0x60000000) ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000000)={"7465856c30000000000000a2e3590008", @ifru_map}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[]}, 0x1}, 0x0) r1 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_int(r1, 0x0, 0xca, &(0x7f0000000000)=0x10001, 0x10) 04:53:22 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000180)="025cc83d6d345f8f762070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000200)={0x26, 'aead\x00', 0x0, 0x0, 'seqiv(rfc4543(gcm(aes-generic)))\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000001c0)="d179f20600000000001c14b1048c5b1bd2e7fcd330451c64b8614fcff9671a5cf54ab025", 0x24) r2 = accept$alg(r1, 0x0, 0x0) sendmsg$alg(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000340)="183523ca64cd1f79e8c4b89b7a81287d2d30f64ae3c5f778", 0x18}], 0x1}, 0x0) recvmsg(r2, &(0x7f0000000300)={&(0x7f0000000000)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @local}}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000001880)=""/4096, 0x1000}], 0x1, &(0x7f0000000180)=""/2, 0x2}, 0x0) 04:53:22 executing program 1: pipe(&(0x7f0000000880)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000580)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x7, @link_local={0x1, 0x80, 0xc2}}, 0x80, &(0x7f0000000600), 0x0, &(0x7f00000008c0)=[{0x10, 0x11}], 0x10, 0x2000c800}, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) vmsplice(r0, &(0x7f00004e8000), 0x0, 0x0) stat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgid(r1) mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, &(0x7f00000001c0), 0x20, 0x2) 04:53:22 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1a00, 0x0, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:22 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x60, 0x10000) [ 192.334457] IPVS: ftp: loaded support on port[0] = 21 04:53:22 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x0, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:22 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000180)="025cc83d6d345f8f762070") set_mempolicy(0xc000, &(0x7f0000007300), 0x0) 04:53:22 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) write(r0, &(0x7f0000000200), 0x0) 04:53:22 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000040)) perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000380)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_pts(r0, 0x0) ioctl$TCFLSH(r1, 0x540a, 0x2) 04:53:22 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x5fff, 0x10000) 04:53:22 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x10, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 192.422828] IPVS: ftp: loaded support on port[0] = 21 04:53:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) ioctl(r2, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f0000000040)="0f019d0050b804008ee00fee8d1a000f23b03ef20f090f07650fc798a1cf260f01b7f3ff0f2199656c", 0x29}], 0x1, 0x5d, &(0x7f0000000580), 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f000000d000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, &(0x7f0000000080)="66b99b0200000f320fc71cf30f5321660fdc9e030066b9800000c00f326635008000000f30baf80c66b842b7f88a66efbafc0cb8478bef660faebbf9622e66660f38226b0c359f0066b8009800000f23c80f21f866350c0070000f23f8", 0x5d}], 0x1, 0x0, &(0x7f0000000140), 0x0) socketpair(0x1b, 0x0, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$inet_sctp(r4, &(0x7f0000004400)=[{&(0x7f0000003dc0)=@in={0x2, 0x0, @multicast2=0xe0000002}, 0x10, &(0x7f0000004280)=[{&(0x7f0000003f80)="011676f8c18c45f1b5ba46a66f7d4e1f30b7baf6202ccd826c4e6ffc578eecf2713f35efd84e26c0ae05c333460ab8289dad85a69a5be525abeb28649b419d95e89505f927c8781405f35197e7c2643028b6a3bfa693889f0cbdecd4da1eb3fe614b7abaff6ca4099bd2887eb43b75e8cf606f10b97d28b6557b41577835f5cd85", 0x81}], 0x1, &(0x7f00000001c0)}], 0x1, 0xfffffffffffffffd) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) [ 192.619204] *** Guest State *** [ 192.622575] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 192.631459] CR4: actual=0x0000000000002050, shadow=0x0000000000000010, gh_mask=ffffffffffffe871 [ 192.640338] CR3 = 0x0000000000004000 [ 192.644088] RSP = 0x0000000000000f80 RIP = 0x0000000000009102 [ 192.650092] RFLAGS=0x00020002 DR7 = 0x0000000000000400 [ 192.656106] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 192.662877] CS: sel=0x0010, attr=0x0009b, limit=0x000fffff, base=0x0000000000000000 [ 192.670895] DS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 192.678909] SS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 192.686924] ES: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 192.694938] FS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 192.702958] GS: sel=0x0018, attr=0x00093, limit=0x000fffff, base=0x0000000000000000 [ 192.710966] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 192.718993] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 192.727036] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 192.735060] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 192.743060] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 192.749513] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 192.757172] Interruptibility = 00000000 ActivityState = 00000000 [ 192.763433] *** Host State *** [ 192.766679] RIP = 0xffffffff811f4fb4 RSP = 0xffff88019a247350 [ 192.772701] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 192.779153] FSBase=00007f67c778c700 GSBase=ffff8801daf00000 TRBase=fffffe0000034000 [ 192.786982] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 192.792913] CR0=0000000080050033 CR3=00000001cf810000 CR4=00000000001426e0 [ 192.799981] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87a01380 [ 192.806698] EFER = 0x0000000000000d01 PAT = 0x0000000000000000 [ 192.812793] *** Control State *** [ 192.816277] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 192.822982] EntryControls=0000d1ff ExitControls=0023efff [ 192.828473] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 192.835446] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 192.842153] VMExit: intr_info=00000000 errcode=00000000 ilen=00000002 [ 192.848771] reason=80000021 qualification=0000000000000000 [ 192.855120] IDTVectoring: info=00000000 errcode=00000000 [ 192.860612] TSC Offset = 0xffffff95e9d762a3 [ 192.864969] EPT pointer = 0x00000001c2dc701e 04:53:25 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000180)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-aesni\x00'}, 0x58) socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvfrom$inet(r1, &(0x7f0000001200)=""/230, 0xe6, 0x10023, &(0x7f0000000100)={0x2, 0x4e20, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) getsockopt$ARPT_SO_GET_INFO(r2, 0x0, 0x60, &(0x7f0000000040)={'filter\x00'}, &(0x7f00000000c0)=0x44) getpeername$inet(r2, &(0x7f0000000140)={0x0, 0x0, @loopback}, &(0x7f0000001300)=0x10) setsockopt$ALG_SET_KEY(r0, 0x117, 0x5, &(0x7f0000000080), 0x0) r3 = gettid() ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r3, 0x10000, &(0x7f0000000200)=""/4096) 04:53:25 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x0, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:25 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_mount_image$iso9660(&(0x7f0000000000)='iso9660\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000680), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="690000000038a724a53d63703934392c6d61703d6f66662c00f283cd8e08997f22c99c7ba827c7ea1a19c9e5fd8b30259b6256a808b0"]) 04:53:25 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x87, 0x10000) 04:53:25 executing program 2: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) sendto$llc(r1, &(0x7f0000001240), 0x0, 0x0, &(0x7f00000012c0)={0x1a, 0x304, 0x0, 0x0, 0x0, 0x0, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x10) dup3(r0, r1, 0x0) syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f00000003c0)='./file0\x00', 0xe803, 0x1, &(0x7f0000000440)=[{&(0x7f0000010000)="eb3c90", 0x3}], 0x0, &(0x7f0000000080)={[{@fat=@dos1xfloppy='dos1xfloppy', 0x2c}]}) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = getpgid(0xffffffffffffffff) fcntl$setown(r2, 0x8, r3) 04:53:25 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x400000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:25 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(0x0, 0x1004000000016) 04:53:25 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x8, 0x400) ioctl$PIO_UNISCRNMAP(r3, 0x4b6a, &(0x7f0000000140)="d28e7dc4597bea77429f16a89ff90902da4397ce6177d65354793696237e7a33fdae72add413db20744cd4cbdbce0a7b3979a3c565d561ffed03bdcb5261755b52c9a1a454bdb0337d5f2a13dbda18e44614a89010e756d248eb707fe33626513634d28366c315ed1bd3882c62b66a11dfd7b59713f38bb9d80e9f184c6e2eab9943d786579415e2206c59bbc42449d9f8f6ad0fb3dff1") ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000500)="0f0866b8ed008ec066ba4000b000eed2a807000000410f01cab98e0b0000b862000000ba000000000f30b90b0800000f320fc72a8f2a60128f00000000003000000fc7aa00100000", 0x48}], 0x1, 0x0, &(0x7f0000000000)=[@cstype0={0x4}, @vmwrite={0x8}], 0x2) ioctl$KVM_INTERRUPT(r2, 0x4004ae86, &(0x7f0000000040)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 04:53:25 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) [ 195.322999] FAT-fs (loop2): bogus number of reserved sectors [ 195.329106] FAT-fs (loop2): This looks like a DOS 1.x volume, but isn't a recognized floppy size (116 sectors) [ 195.339296] FAT-fs (loop2): Can't find a valid FAT filesystem 04:53:25 executing program 3: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000000180)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10) sendto$inet(r0, &(0x7f00000000c0)="b5", 0x1, 0x0, &(0x7f0000033ff0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) shutdown(r0, 0x1) setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000000)={0x9}, 0x4) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x2}, 0x8) r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x0, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r1, 0x541b, &(0x7f0000000200)) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000100)={0x0}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000040)={r2, 0x9}, 0x8) 04:53:25 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x500, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:25 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x88, 0x10000) 04:53:25 executing program 5: preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000001200)=""/148, 0x94}], 0x1, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/fib_triestat\x00') preadv(r1, &(0x7f0000000480), 0x10000000000002a1, 0x0) ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f0000000080)) getsockopt$inet_mreq(r1, 0x0, 0x24, &(0x7f0000000000)={@multicast2, @loopback}, &(0x7f0000000180)=0x8) getsockopt$inet6_buf(r0, 0x29, 0x23, &(0x7f00000002c0)=""/199, &(0x7f00000001c0)=0xc7) 04:53:25 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000000040)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f00000000c0)=0x0) timer_gettime(r1, &(0x7f00000001c0)) 04:53:25 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(0xffffffffffffffff, 0x1) [ 195.424819] FAT-fs (loop2): bogus number of reserved sectors [ 195.431080] FAT-fs (loop2): This looks like a DOS 1.x volume, but isn't a recognized floppy size (116 sectors) [ 195.441268] FAT-fs (loop2): Can't find a valid FAT filesystem 04:53:25 executing program 2: r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0xfff, 0x0) ioctl$sock_inet_SIOCGIFPFLAGS(r0, 0x8935, &(0x7f0000000040)={'bridge_slave_1\x00', 0x6}) r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) bind$llc(r1, &(0x7f0000000140)={0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @link_local={0x1, 0x80, 0xc2}}, 0x10) getpeername$packet(0xffffffffffffff9c, &(0x7f0000001bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000001c00)=0x14) ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f0000001c40)={@mcast2={0xff, 0x2, [], 0x1}, @dev={0xfe, 0x80, [], 0x1f}, @mcast1={0xff, 0x1, [], 0x1}, 0xfffffffffac14609, 0x401, 0x2, 0x400, 0x3, 0x1100000, r2}) 04:53:25 executing program 1: r0 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x7, 0x8001) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x4, 0x4, 0x7ffd, 0x3f, 0x2, r0, 0x0, [0x24000000000002, 0xe000000, 0x0, 0x0, 0x0, 0x0, 0x34000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32000]}, 0x20e) 04:53:25 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x258e3cc79c, 0x10000) 04:53:25 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x3f00, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:25 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0xc008ae88, &(0x7f0000000140)={0x10, 0x0, [0x0, 0x0, 0x17a]}) 04:53:25 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000180)='/dev/input/mouse#\x00', 0x100000001, 0x8000) ioctl$BLKBSZSET(r1, 0x40081271, &(0x7f0000000040)=0x9) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000340)='/dev/nullb0\x00', 0x802, 0x0) ioctl$BLKZEROOUT(r2, 0x127f, &(0x7f0000000080)={0x0, 0x80000}) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0), 0x10) 04:53:25 executing program 1: r0 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000040)=0x1000000, 0x4c6ac539) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000000)=[{}, {}, {}, {}], 0x2217) 04:53:26 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(0x0, 0x1004000000016) 04:53:26 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000d1c000)=0x2c, 0x4) bind$inet6(r1, &(0x7f0000000280)={0xa, 0x5e20}, 0x1c) 04:53:26 executing program 5: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = dup3(r0, r0, 0x80000) getsockopt$IP6T_SO_GET_REVISION_TARGET(r1, 0x29, 0x45, &(0x7f00000000c0)={'IDLETIMER\x00'}, &(0x7f0000000100)=0x1e) ioctl$VHOST_SET_VRING_CALL(r0, 0x4008af21, &(0x7f0000000040)={0x3, r1}) r2 = socket$inet6(0xa, 0x4000000000004, 0x0) mq_timedsend(r1, &(0x7f0000000280)="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", 0x1000, 0x7, &(0x7f0000000180)={0x0, 0x1c9c380}) setsockopt$inet6_int(r1, 0x29, 0xff, &(0x7f0000000140)=0x5, 0x4) getsockopt$IP6T_SO_GET_REVISION_TARGET(r2, 0x29, 0x18, &(0x7f0000000000)={'IDLETIMER\x00'}, &(0x7f0000000080)=0x11) 04:53:26 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x410000, 0x0) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffff9c, 0x84, 0x13, &(0x7f00000000c0)={0x0, 0x100000000}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000200)={r1, 0x1f, 0x8}, &(0x7f0000000240)=0x8) syz_mount_image$ceph(&(0x7f0000000040)='ceph\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xaaaab71, &(0x7f0000000300)=[{&(0x7f0000000080), 0x0, 0x1}, {&(0x7f0000000100), 0x0, 0x804}], 0x0, &(0x7f0000000340)="8800") 04:53:26 executing program 1: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = dup3(r0, r0, 0x80000) ioctl$KVM_GET_VCPU_MMAP_SIZE(r1, 0xae04) r2 = socket$kcm(0xa, 0x5, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$nfc_llcp_NFC_LLCP_RW(r4, 0x118, 0x0, &(0x7f0000000480)=0x2, 0x4) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000002c0)={0xffffffff}, 0x0, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000340)={0x13, 0x10, 0xfa00, {&(0x7f00000000c0), r5}}, 0x18) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r3, 0x4058534c, &(0x7f00000003c0)={0xffffffffffffffc0, 0xfff, 0x88b, 0x7, 0x9, 0x5}) setsockopt$inet_udp_int(r3, 0x11, 0x67, &(0x7f0000000380)=0x2, 0x4) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) write$fuse(r1, &(0x7f0000000440)={0x3d, 0x0, 0x3, @random="d2a9834f93db61a6d1535a2457085a4405ac6d8e490ffce44d346740ef84608b83c5ef16db0d2b3a302f127b80"}, 0x3d) fcntl$setownex(r2, 0xf, &(0x7f0000000080)) 04:53:26 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x300000000000000, 0x10000) 04:53:26 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:26 executing program 2: r0 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x7fffffffffffd, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x5, 0x0) ioctl$TIOCLINUX2(r1, 0x541c, &(0x7f0000000040)={0x2, 0x2, 0x6, 0x3, 0x4d, 0xffffffffffffffc1}) 04:53:26 executing program 5: r0 = syz_open_dev$sndctrl(&(0x7f0000000080)='/dev/snd/controlC#\x00', 0x1, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x400, 0x10880) setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000001c0)=0x100, 0x4) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r0, 0xc1105511, &(0x7f0000000040)={0xb, 0x0, 0x0, 0x0, "1059493481b639195a8a2dd9ee3ff7e9c50e58fe75430138d7f00cfe322bea8af5c4de2e32bb0a6e99f963f4"}) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f00000000c0)=ANY=[@ANYBLOB="0400000000000000ffffff7f020000000000000000000000ff0f01000000000000000000000000000000000000000000000000000d0000000000070000dda100000000000000010000041a0000000000000000000000000000000000000000000000000000000200000000ac00000000000000000000040000000900001c000000800000000000000000000000000000000000000000ffffff7f04000000000000000000000006000000000800000000000000000000000000000000000000000000000000000000"]) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000002c0)={0x0, 0x88, &(0x7f0000000200)=[@in={0x2, 0x4e21, @multicast1=0xe0000001}, @in={0x2, 0x4e23, @multicast2=0xe0000002}, @in6={0xa, 0x4e20, 0x8, @remote={0xfe, 0x80, [], 0xbb}, 0x3}, @in={0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}, @in={0x2, 0x4e21, @loopback=0x7f000001}, @in6={0xa, 0x4e21, 0x9, @mcast1={0xff, 0x1, [], 0x1}, 0x44}, @in={0x2, 0x4e22, @multicast2=0xe0000002}]}, &(0x7f0000000300)=0x10) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000340)={r3, 0x7, 0xcd}, 0x8) 04:53:26 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(0xffffffffffffffff, 0x1) 04:53:26 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000000000000700000000000000200000000000000000000000fffffdfd0000000000000000000000000000000001000000000000000000000000000000000000003f00000000000000000000000000000000000000"]) r4 = request_key(&(0x7f0000000100)='asymmetric\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000180)='/dev/kvm\x00', 0xfffffffffffffffd) request_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x0}, &(0x7f00000000c0)='/dev/kvm\x00', r4) 04:53:26 executing program 2: r0 = socket(0xa, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000ab2000)=0x1002, 0x4) sendto$inet(r0, &(0x7f00004e9000), 0x264, 0x0, &(0x7f0000821ff0)={0x2, 0x4e20}, 0x10) r1 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x81, 0x200) connect$pptp(r1, &(0x7f0000000040)={0x18, 0x2, {0x1, @multicast1=0xe0000001}}, 0x1e) ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) recvmsg(r0, &(0x7f0000000740)={&(0x7f00000000c0)=@nl=@unspec, 0x80, &(0x7f0000000640), 0x0, &(0x7f00000006c0)=""/110, 0x6e}, 0x40012021) 04:53:26 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_sys\x00', 0x0, 0x0) getsockname(r0, &(0x7f0000000240)=@hci={0x0, 0x0}, &(0x7f0000000080)=0x80) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) close(r2) io_setup(0x8, &(0x7f0000000100)=0x0) r4 = socket$nl_xfrm(0x11, 0x3, 0x6) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'syz_tun\x00'}) bind$packet(r4, &(0x7f0000000040)={0x11, 0x0, r1, 0x1, 0x0, 0x6}, 0x14) connect$bt_l2cap(r0, &(0x7f0000000140)={0x1f, 0x0, {0x4, 0x5e72, 0x7, 0x7f, 0x5, 0x5}, 0x5, 0xffffffff}, 0xe) io_submit(r3, 0x1400, &(0x7f0000000600)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x800000000001, 0x0, r2, &(0x7f0000000140)}]) 04:53:26 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x4000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:26 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10087) [ 196.696092] ceph: device name is missing path (no : separator in /dev/loop3) [ 196.762798] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 196.779788] ceph: device name is missing path (no : separator in /dev/loop3) 04:53:26 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000180)='/exe\x00\x00\x00\x00\x00\x00') ioctl$fiemap(r0, 0xc020660b, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x8001, 0x49249249249296c, [{0x5ed, 0x8, 0x2000005ad, 0x0, 0x0, 0x800}, {0xabc, 0x2e, 0x20003, 0x0, 0x0, 0x400}]}) 04:53:27 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl(r0, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x7, 0x810, 0xffffffffffffffff, 0x4f) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x2f84) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x200000, 0x0) setsockopt$bt_hci_HCI_FILTER(r3, 0x0, 0x2, &(0x7f0000000080)={0x7f, 0x8, 0x100000000, 0x9}, 0x10) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000040)={'veth1_to_bond\x00', &(0x7f0000000440)=ANY=[@ANYBLOB="450000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000eac1b5a9beb77cca30407f5ba07ff96a23e367290201e430eaf12f376130a2ee2c9fec2e95a72ec0986c63fbffffffffffffff573b4a8a0b975c99d65b5091a034a8259d3ad24a88ed9683198e7cdd84162f8f27992d1b1c14f7e3ff53b195497e21ec4b3417a465316fe9f018ee01c38a5caaaa4b0352ebbccff025063cb1bab5a76e691fd538b6e3e54d4ab0e0b6143d8957399050a0b32c8c7206f34885d817485d8e1d84bf638379fb8e57fb4ad5933810da26777cd1030c99c196ddcd46550429a51c0b22854387bb9880464b70d59858114a435b1d7b76fea0c0178e545a1733a1a985e904dcac91798b651215ff"]}) close(r2) write$binfmt_aout(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x283) close(r1) 04:53:27 executing program 1: syz_mount_image$vfat(&(0x7f0000000140)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x100000000000e002, 0x1, &(0x7f0000000040)=[{&(0x7f0000010000)="eb64c86d6b66732e66617400020441000500077008f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[]) r0 = open(&(0x7f0000000080)='./file0/file0\x00', 0x3fffa, 0x0) write$binfmt_script(r0, &(0x7f00000018c0)=ANY=[@ANYBLOB="85"], 0x1) ioctl$KVM_ASSIGN_SET_INTX_MASK(r0, 0x4040aea4, &(0x7f00000000c0)={0x3, 0x5, 0x80, 0x3, 0x8001}) io_setup(0x4, &(0x7f0000000000)=0x0) io_submit(r1, 0x1, &(0x7f0000000400)=[&(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000440)='\v', 0x1}]) 04:53:27 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8d, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:27 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x11800) 04:53:27 executing program 2: r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x40000, 0x0) ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) bind$llc(r0, &(0x7f0000000040)={0x1a}, 0x10) ioctl$BINDER_THREAD_EXIT(r0, 0x40046208, 0x0) getrusage(0xffffffffffffffff, &(0x7f0000000080)) 04:53:27 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(0x0, 0x1004000000016) 04:53:27 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x210101, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x8, 0x7, 0x9, 0x0, r0}, 0x366) r2 = bpf$MAP_CREATE(0x0, &(0x7f00004f9fe4)={0x0, 0x4, 0x4, 0x100000001, 0x0, r1}, 0x2c) ioctl$sock_bt_bnep_BNEPCONNDEL(r0, 0x400442c9, &(0x7f0000000040)={0x7fff, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x4, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018100000", @ANYRES32=r2, @ANYBLOB="000000000000000118100000", @ANYRES32=r1, @ANYBLOB="00000000000000009500000000000000"], &(0x7f00000000c0)="04004000c8337912a44288e0e6cd603070fab88ab00d1e0843a55f0ca4389582b04d6c35b50ac24bc941ccc9bbe5ef3248d52c26600249d683af3f988a5ace8b7b4f0e10f8b08e4281778724fe4565bda785db880afa759583b4c0f46b6cae4c15fb9c295ae3028b0bd0dee12c49d5ef1260cd7fb02ab4dbf9a65fc323abb0e51889480e01dc76fd5f0b421dfe", 0x2, 0xdd, &(0x7f0000000240)=""/221, 0x0, 0x100000000000000, [], 0x0, 0xb}, 0x48) 04:53:27 executing program 3: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000001c0)={0x0}, &(0x7f0000000200)=0xc) ptrace$setopts(0x4206, r0, 0x87b, 0x5) openat$mixer(0xffffffffffffff9c, &(0x7f0000000240)='/dev/mixer\x00', 0x500, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x1d4) connect$inet6(r1, &(0x7f0000000140)={0xa}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x4) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000100)={0x303, 0x33}, 0x28) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000000)={0x303, 0x33}, 0x2) r2 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x301401) setsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000180)=@int=0x100000000, 0x4) 04:53:27 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x180000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 197.346936] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 1041) [ 197.354488] FAT-fs (loop1): Filesystem has been set read-only 04:53:27 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x18700) 04:53:27 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(0xffffffffffffffff, 0x1) 04:53:27 executing program 1: r0 = inotify_init1(0x80000) r1 = socket$inet6(0xa, 0x1, 0x0) ioctl(r1, 0x4000008912, &(0x7f0000000100)="2957e1311f16f477671070") fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f0000000000)={0x0, 0x0}) ptrace$setopts(0x4206, r2, 0x0, 0x0) ptrace(0x4208, r2) ptrace(0x21, r2) 04:53:27 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x66b, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mincore(&(0x7f00009c1000/0x3000)=nil, 0x209c4000, &(0x7f0000000000)=""/172) 04:53:27 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x78000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:27 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl(r0, 0x90, &(0x7f00000003c0)="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") bind$inet(r0, &(0x7f00001edff0)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) r1 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x4da, 0x101000) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) sendto$inet(r0, &(0x7f0000000000), 0x0, 0x20008800, &(0x7f00000000c0)={0x2, 0x4e20, @multicast1=0xe0000001}, 0x10) sendto$inet(r0, &(0x7f00000001c0)="3b6698844a0c93dfa4037b1f2d57cc69eabd8fb2cfb4dc22ef90321727d00300b8a0748e3e5b1fca6215a9d51dbdd8afd19d34465198093caff947d14de3ff9d9892047193", 0x45, 0x0, &(0x7f0000000000)={0x2, 0x0, @multicast1=0xe0000001}, 0x10) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) recvmmsg(r0, &(0x7f00000026c0)=[{{0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000340)=""/110, 0x6e}}, {{&(0x7f0000001d80)=@sco, 0x80, &(0x7f0000002280), 0x97, &(0x7f0000002340)=""/114, 0x72}}], 0x2, 0x40010122, &(0x7f0000002840)={0x0, r2+10000000}) 04:53:27 executing program 5: add_key(&(0x7f0000000000)='encrypted\x00', &(0x7f0000001000)={0x73, 0x79, 0x7a}, &(0x7f0000001000)='\x00', 0x1, 0xfffffffffffffffc) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x400004, 0x0) ioctl$KVM_SET_TSS_ADDR(r0, 0xae47, 0xe6cb07507b1e2422) syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x3, 0x1, &(0x7f0000000240)=[{&(0x7f0000001040)="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", 0x1000, 0x1}], 0x200004, &(0x7f0000000280)=ANY=[@ANYBLOB="73686f72746e616d653d6d6978650100000000000000312c00"]) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r0, 0x810c5701, &(0x7f0000000100)) 04:53:27 executing program 2: openat$rtc(0xffffffffffffff9c, &(0x7f0000000180)='/dev/rtc0\x00', 0x0, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000000)="025cc83d6d345f8f762070") r1 = fanotify_init(0x0, 0x0) getsockopt$inet6_dccp_int(r0, 0x21, 0x0, &(0x7f0000000100), &(0x7f0000000140)=0x4) ioctl(r1, 0x8001, &(0x7f0000000040)="fa98ddda3b41a65a9a13e2516c9935bfafb7ede324bda6103f164de60d358ef50618eeb831b9b8ed77da2a830392eb18bdda6adb1152857b90c1890a71e6ad126e6223bf1dc5aa334ec85f764c6b5bb4ae53350f40407daf0c49e1c27ff2a4d288ab0bf3aa8e98728ee51e29b1f05fbcb7305fbfbe7d35260ededa4dde6f547e3786c7e055") dup3(r1, r1, 0x80002) 04:53:27 executing program 1: r0 = socket$inet6(0xa, 0x802, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0x100000000b, &(0x7f0000c29ffc)=0x9, 0x4) getresgid(&(0x7f00000000c0), &(0x7f0000000040)=0x0, &(0x7f0000000100)) r2 = getegid() setregid(r1, r2) 04:53:27 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10004) [ 197.570770] FAT-fs (loop5): Unrecognized mount option "shortname=mixe" or missing value 04:53:27 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x4) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x80000000000, 0x32, r0, 0x0) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x4000, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000002c0)={0x0, 0x0}, &(0x7f0000000300)=0xc) ioprio_set$uid(0x3, r3, 0x8) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000140)={0x0, 0xdb, 0x1, &(0x7f0000000100)=0x63}) setpriority(0xa1f967210c10710a, r2, 0xffffffffffff9aee) clone(0x0, &(0x7f00000006c0), &(0x7f0000000780), &(0x7f00000000c0), &(0x7f0000000180)) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000340)={r1, &(0x7f0000000480)="1ded21addca418753e78df42bb0225dbbdd432324ce52b1ac0caa9a25897dd1ae48a6205827857837cf428e8da16fddf0c7f26195d46741bedbb3d330c71f863b8777571950886e4daa86b1790a3a1f770f4d590aa5ddb54acd41e98fe8528a3a42c93f5e5bac129c01aae95d88923ee609b512f9b7a5f18593dc60300731f846b3a7d0122974e3c00b9b0c3509a7f109d823c0863525bf9d4a4e69735848e7c0485ffb6eb297efb1c9a9c7d6a28d18761b66b91e39cddb485fd763a4450f39de616a0253ec0", &(0x7f00000007c0)=""/244}, 0x18) setsockopt$inet6_tcp_buf(r0, 0x6, 0xe, &(0x7f0000000000)="5ab4755cc954dc695bd273ec5cfad9b86c0ed07027cfbe04950b66d7fbe7d1a60a888380abab5e2670896ee7aacce60f8aeb8c76adb2b4e7d007db406e2f3f4c393350b20cb88b84d85522ea5471b36b72871eb7ec914541d8445d39c0e72f", 0x5f) bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x0, 0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="0cceed01010000b6b4a70d0e573b82d45601d133eaca762f56f475bcffe1ea35c67df186b8129d477ea7f59a3663a2e5d38dc352d9838647dbd2e4021ad545f180060000000000c90461de2d82dcc1cbae4dc116c0c3f504dea006978054373ba3e6f8288051519c18dbde6bf877cc21c61dc10597ef53386ab01a9ada35535915ae4edbbf5b2f14c4c4cb177fb96bcae8490a35950db0cc3048a469e060cbb8dc07000000f1490219bae784947be64e"], &(0x7f0000003ff6)='syzkaller\x00', 0x0, 0xc3, &(0x7f0000009f3d)=""/195}, 0x48) getsockname$packet(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000440)=0x14) setsockopt$l2tp_PPPOL2TP_SO_SENDSEQ(r1, 0x111, 0x3, 0x0, 0x4) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x1, 0x5, &(0x7f0000000380)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x3c}, [@ldst={0x7}], {0x95}}, &(0x7f00000003c0)='GPL\x00', 0x0, 0xc3, &(0x7f0000000580)=""/195, 0xfffffffffffffffc, 0x0, [], r4, 0xb}, 0x48) ioctl$KVM_SET_FPU(r1, 0x41a0ae8d, &(0x7f00000008c0)={[], 0x4, 0x5c034add, 0x7, 0x0, 0x3, 0x5000, 0x2, [], 0x6c10000000000000}) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa, 0x100810, r1, 0x100000000) setsockopt$inet_mreq(r5, 0x0, 0x0, &(0x7f0000000240)={@multicast2=0xe0000002, @broadcast=0xffffffff}, 0x8) ioctl$KVM_RUN(r1, 0xae80, 0x0) 04:53:27 executing program 5: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xa, 0x7, 0x8, 0x1}, 0x1f3) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={r0, &(0x7f0000000040), &(0x7f00000001c0)}, 0x20) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000040)={r0, &(0x7f0000000280), &(0x7f0000000100), 0x2}, 0x20) getpid() [ 197.616667] FAT-fs (loop5): Unrecognized mount option "shortname=mixe" or missing value 04:53:28 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x0) 04:53:28 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x1800000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:28 executing program 2: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000000080)={&(0x7f0000d55000)={0x10}, 0xc, &(0x7f0000000180)={&(0x7f00000001c0)={0x18, 0x2, 0x2, 0x800000001, 0x0, 0x0, {}, [@nested={0x4, 0x2}]}, 0x18}, 0x1}, 0x0) sendmsg$nl_netfilter(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000040)={&(0x7f0000000200)={0x11ac, 0x3, 0x6, 0x0, 0x70bd2b, 0x25dfdbfd, {0x1, 0x0, 0x3}, [@nested={0xf0, 0xf, [@generic="789ec3c7683fbde2a4c41ad2af86be2989e1ecd84900e445673bff265d3629a6d35d50b5bfb24fdc5cc23d43f8f3ad4e3791fa1cd31eea37b109fb1ab390d9cbf85a79e29c464ff300677a88506416e2288beef99f0833a2460baf030a6c53dcb0f64e702da4c35c86f39b7896b234d9a750c890426c208c0c1087dac2fc31074612fc3daa8bc4dd133cb3018731a3c38903840b294a2036563f5d60e9285e214de0e655ed579582d406d53ba4abdb", @generic="67f66ba3a2f4836aace9074b1d4e44e96a5afabbe8f086aaf94f95010fca492ec763206dd29dfd8a37aa01c1d895d033a892e8450d1cc92effed2476"]}, @nested={0x10a0, 0x94, [@generic="a1d06c3bd48ae3d38791bd83f2d829b027757646a74ea921944ce05ca835a1faf7c1e5dd3e86b8597d26d6bde173b15951cd3dcef2dbaba390437614d949d77825d91652fe8ad723614aa15122c45778ad7e594ac2cad9ff6fc8f18330ff80c2a2b6c7c7a8323f2d", @generic="5d06b25140cd9e9a59910ac97c48090b7ffe9d2d4d368c7903a172dc1077482f4f454ab221c6f010e33e3cd40702569844f696cc", @generic="b2b4a655751c42e594253288dbbbee227233d007fbf254b81017b3477e3a2304042227eec2f0154aa0b3e2340019b832e90e9d41e9bbf30506ae937e1e1d8734b42ac0baa8ea7f94802c901a32b14588db0fb70525b1df19b02563c4289b8d7e5987e71b519354ff994ef4510606becf100728646a35745debc0684c3707d5ef4267789d6f28fd3ad96c94a1c27d4a84b244d4a4ecbd393ae66912850e1378abc804873d9b73e9a0a7c3dd0a7be1f9126510c5264db59b675c3831cf2feb0e15cc08c2608ea168ae86d428f51952712974f050891f1777f2837ac541b2789e03c7402cef5b7e3bfb58e8dcc0db70462939c73b336cf9e3953367014f45cdd557cadbdc99b6b6a349a68c455d11557a8ff295dc32446fbc4a19366c3d38dec55a754ee3c7556b20f97b6c9da6e2f7d1d639ddc978b65232826a2dbff3bbdbdcb563f054af3e27657fcae3c2cf3120a5b9d877b4c43eb314c9b5b683d078939b6ee7fc5d97eb7a9f37af32f9699a633f3859dcee238248fef7a18dd15efdef0e0aed5f4b12cec42f3046dc461245869dd6ff0db0a664d2486a0c76691fd86c7f0c5d4815074c7ea57e4702334085fc38ee123653a12ee0dd469e16ac98721cb1654e399ba8f9d44758eb4f115a7f5760855c74576c8122ed480b2e0ac9ef11145606b27709e39c3e4db064ed769b0345dbd2b91bd792ebc2b1103232b33800495c7c38521356ce4385e6552b58c7f24b2ea28ca6b698257f95ccd78bc61fb30b42569bc71b5f360df0a81fe9be7d057c60b30759ad439d752c79790acbf319834adada4fa6882e9b62d2af77721582ccec98a22d28b7407dfec4c07a8efa5cfc576d7ecd29e08199a9efe73e5e8b66b50da1b703588a3f33b04e627978a4be67435a81cbb01398929fab84c2d278b622f8188aa135cdc1ca35dfd95a642fcdbb5101c0c75891e467c8979c919cd11df45a1c144d3ab92c9856a4abc75bdb127a9275f951a53582df76959267b29e31ecc16c779d05de6e323318539b48625447a2ecd511c6947f5cc6b5a0cfcc473a95c79bdb5763c61dd724b7c2eafc8a13ae0ee059f7b74b7c8b6a75ed3cae943113af6d415e9fc9f1359fbe18245a44d608183764ec345700d40669f4cca51990dd8033a725e633d729906b6d619c361c0944a0dff6b42b7e99cd15553ae53b3a42bd12160ebc9f6cc3cec9d4febd40eada96c7753be4df5a89248b0a1d8be374ebeeec49b012989dcbb2e05c24773c51c02b5c857e59c4aa39ae1dec085c707595a02124fa8103461bfdcd6a787ead546c85e86c39df5c33419519a1a98c84d48693c9b685060ca6ad1c7f1a6c09306c8cdc577aab38b5586347889e1561bf1b4bd46e641dd4ed337a810466f065a2ad3bd921b8896cca0d9e780f5f66e0ceff2b47b09c7b7699ddea693d1fc0a838c647f20fb0e2a3e26c9b1e26eb036ff8c202c14433fb269729c32a802185afcb459761e808ea5874114a20eecf72a4b2a45b648d8fd16e564449e03474bdbbb62de7e332aab108837124d9f558e4fca07cf8dbfebcb789a0ee30a900470873e68597bff56429648ae2f2aa23f42dc6af8c197c236d2bd3095ff055fb16d03d3fefb74289b3651048a68d74d1ca1aa17cb9b17332b532c2f739d6b22828b7fc75f4c06f7b70ca82af9fa8eead45dd8d01794005271594f120da3205569330a3e9812bf41297df6687a64f9d03bd79f86fe67a2d945bd23578e809b1aa0216b920265fa6563915306c80d32605c638691bc4a55364c2ed572e94437d516ac495ae8a512d0777f50d5a00a68105cebb91c62d2163075cea9cd07bc23fcaee47de81735478bb96d930a9779f58bde7d424e0b70703d8860dc8c6a64462748a17d4f8f94748399e5566eeb30bfe81044005f64cf482be890e77255a96dc9be0556e104f8ad835f57403052c58a5973cf59ca5f93404005404f356c082b0c3484f719cb8a451e110a182d4de655a4ac7bce9cd1c6feaeaae9a99e77137f9e2336650be86fd515329695e419007ec07620df236b8b1d285892c69ef736d71c2ac021d77db10087a63f9744ba9febd0f731f1418d570173dc2a9780353582ff92734b6492f11d6b213b497e0b197279db25f872fb5c780ca50bb1976887ea0907d45e5bd884a8ebf9ea2498b6f2a5d1ffaf6486a351d1ae38c7e02b3081c259c72d7ecfe520978ddb395a0f533c24bdddf5006facd48c3dcd86ac76324f8a3beae4d76d21b9128bb61f2d7d6641e54c2da6ae6d42440f7e4b515ef44d81d481d41ad78cb3d3f0433a12df0e3c179bdc79e4f4d311211cf0b301b0c2cc957d9c71cecc0e23c5b1d0cebac7804a0e1707f36ec0115f81c32e0b27ff8c71dbf9ace07837317b500a2949bb71d0b0c4a2c51c62f06ccb661fb0e0bb20a4c713a073310d6f478cd78a737afeeb74be21e9165f072b2a991573476a53603d33cfff9d4e0b05f03cf17facba3d3f11e91c82af913c9b16ffba3448be4d5abd0b763bf4f55afd57bef2442f194d36bb81f762be56e0a465ffe8d71a4548fc223bd7580f0509ddfca96292fb2c2f306a803a61fe3156b47d2787f9dd4b0e90d89fee56d4ef499702d5a739efdf209d747364afe6af717693a776ef5eba8b8206c19e270be867019702551486fdac370efea5a2316d9d373a6eca146611e3dfd6ba60143ab0e7dd1c0868acc65e460c483cc2214c09c41cd78ea3f33a31ab3721f490355fa970be5fb5c4056d036196dacd21b409e0f0d79bf0c38bf2ba213dd78a1e8e60ca7353f55578e96f1820eb836a517d14429ad7beeacd278fc3ba24477cd92e1d9b5610f6a4ee2384418280ae2399649c091ca7e7c73b902a9653dbb63558aaa5d5f6487376d4df66ef542163cd8a36b225c48e68d2dc2aacc1dfdc3df259038d8e78b82216f0707d59ec8db6b217b85f31064b5b43aae67f25b3bf6590132a04718cbb576e44e32b08847c9be2125831fad7bc825f4db3defb80b805fc6d7db7bafddd5f184052e938df244909677026ab5cfda4e8d4034d5eddc77790c0ff695eec6d1c5af657efaf6be32312ef2df22fb15789e084967a5cfabc4e87b70e0c20e1213e80912fb9596f289d73d9ec530657ddf093c54250ce6255d45c91a39824b87d8b6ff116b615993f79ef15eb0855cf4665266269ac60d8e3b818e7edfee30ea8fb749c9de64a8b4a7e4593e1117c6b777078680c2ebc311ef28a1d365514304e1347d154e9e608348c7ae82dc718c66313d99685b0220008f8876dfd77bf851c0b405d4f95abad549a5fdb6f6284b99351378a37dac0ba19c176b1b5065a46f6885cc34790ac54d5987212b2cb310c93bb01929d9168634188022e074d8cf82f7b84a37ccd1c224c39fd6f2bc4986f63cd37ef6aa82224f1601051667520894997077bdf2f7c8f3847a1f2cf30c01359849454d392fe3034831169b40d4bc6c42d311a74659afa7f3fb3379dad8da774d8b57fffea34eb65ea3baad5c4ba07fee055b84c3ffcf561448a0ec311355be2ec5574672899e56ff9ea0350abe032db5ecdc338b7f27d21207a3a23f7b2ffe6279f77d6df9171bd3f0e8ae39a823abb2d447dd51f80531bdc143e272745ebcc4ee6c3c41f1b13efbe9b0958f83a6ccbc88cc2f5ade11d93734a048240028743f6d867ed035fdff4c1737df90ab8a5a0484f5b1e895d51684d5aeb4dbe12f23ecdb3ecfdddf4780b1af11cc888b189801a8fd1097cf599d71f0238e03d120b510247af503eacf8603e9300fcaa4d50817acda85cb484bfebb377d8a0a78b6be49d41edeaf4e33be4c85acbf730bd8b6ac7c9877fec276acc269569abbee4f849136ae4f96ff642f06bad20ef58ab5af68d29185928b969246f51abc18111a7acd7b45905ab0db47cf2158968220d92684dd2bd6406848d1872d90805805d37cccbe3544d95b2bebbb8e7784654d8d43e76c8cf21203eba1f3108eaddf9f2602b5ee286cea371d627687dc7d64bdfc3773c3ffd89d9a84a9dded48601aeb770c1e22af66f6676d4c5bc5b27f3655ebb82b893765e379e9a4e4a55549f7566301628a05b89daca6c43e26a914061fe5115769f08c6d3e6290485f32ee3d15f249d69a115812b8cfe825e7d0fb09fc22e06916f97450bdbf182b00a02638163e0a1c90505832d7eae7152752cdf0afe81e43150898e9749c8d466eb1d97384d51466c6a6718e84f78f2de54acb728a71473ddc6d7a20592328cfdcac8f577c80f283e7c83b08b5dbac944c0c820e20a6b4eb4539388822a460c1ef4d4ba384567270c92b6505236c90029ec9d0541471154fdd657c9d88021fe7ee08525d3fc5dbcf3e6b8b9660ba4945adbeebf97f1e14081173eb6cba8e32aa16740e90b97c2afdca0972613cf183477d22521e1e192cf8fb563be51d397f53fe67f1fa66534e322306a45efb95bc95cc548ff21a0215d5aa6857b0a2dd648682081b8864dca900c4a5327d1f7c5e7af8f4c171e4e2aed2a2c96b372491061cc630f4fb3270624ef095caaa4dbd0b2f63e030d2c270428f124139ee08ee6ebdc4db2eaf1fd3d4fa81e4e67731f54d3c583b3a658c1dd6bd64d63d41e722687f50744d9d9340816bb8d27064efdf2612ffeb76342c85989f5e6d948353b397e311d616fac5deef880924e887bbe1f1e66eafc1567c3a02ef08402a277ccf2ff9593884bfa498034cfd2cfb7c02b809d9bafcfddd12ee2dad60c4fe172cf2003f5f6ad6fd14faec904da2cd9c47015d5302adf72f6ae0010829a149daaa0e79b1d8fd7a58f29be5ea2e3f2f961009f40dcb83cd3f88aa3abbbf1519a84a9c88cd247a332e191db704fe17528ece0454ec63006dd9859c4f6d009c43cc02c8594bc2580fade9f001d18108c0d3a470eccbcf456649e7ea9cec8555794393f2a1b185acd78735c4d3cd94cadee594cc2d9567d8e14e95312b3dea0e5224dac13dad6f46785057d5f370cebce9f610cf47504f4c7e4ac074aa98642c222e24080b27b226238c7337a128efb6a06c6d3bc9be36dfc6c6e2e3210591a20e5d2349275f974722462b90a1c8957acfae1f0bfc144325ab0f30ebd5e0ba784d559f2b88e6854954795d057215769ccdb4f3d8864d4be278f6a3c8e532c9862af040a8c24da14e517b85dc51cb348ea66c463a11177ba8518eca08eac350abddb8992ff0e3151de00c04637979274aac796294e1368b1073b24c2e25c978ea830c1d01af6b6072902756b0991a7672fe80be8610d76e15772ec715e9fc27bceedd0c23c4eb33c13fcd9c351dbff329b474d84f886d06149ff1894b9a7d36eb7b81c2f953af9d8261462a3e31efe31d8c71a0393b35a131b75d3205a7963a3af40d8717ec0e804347b0ba23c29a2e2ed770ec2f386e07e3f9e6fdb6c7b36a28a4a85adcf88e9a658ee699b6dea3ea77193f5270857f9ad1acae63024d059fd3bbb6d0878b4d8891c23e50b2568eb32bdd3d34c63d88d2fc7e80fef5a4d0820a1f20688abc982461dd3dd59351ef56b20de6d1318e30fc62a4cdb587cb590b5eb6233b76346b500068f627cd55e8f04c27df71a208aadf13faf3fb3211d93d2561d86c63d341a0620d88ad39be736b4686cb0e7a55b21957a1fb0857b8c2bbbf4ca88e3738e8d4e86e69c9ac00183c5753ffe701318f6f0000c877d6f0dcd50cd1fe10611cace83943b80f41509895897a498616e5b6af0b5ce7e37aac318c26e98f3afa85fe8eb1dea04d33d6299ffa0d987e74e2bb53e68c2f9b570f47f0a7726a"]}, @typed={0x8, 0x8e, @ipv4=@broadcast=0xffffffff}]}, 0x11ac}, 0x1, 0x0, 0x0, 0x40}, 0x0) 04:53:28 executing program 1: r0 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x2, 0x1) pwrite64(r0, &(0x7f0000002240)="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", 0xfa4, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000800}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0xb0, r1, 0x200, 0x70bd29, 0x25dfdbff, {0x11}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bridge0\x00'}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x4}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2={0xff, 0x2, [], 0x1}}]}, @IPVS_CMD_ATTR_SERVICE={0x38, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e20}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x3a}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local={0xfe, 0x80, [], 0xaa}}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x27bd65}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x22}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}]}, 0xb0}, 0x1, 0x0, 0x0, 0x4}, 0x80) fcntl$setflags(r0, 0x2, 0x1) 04:53:28 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000013000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000080)=0x0) fcntl$lock(r0, 0x7, &(0x7f0000000040)={0x0, 0x1, 0x0, 0xfffffffffffffffe, r2}) fcntl$lock(r1, 0x7, &(0x7f0000010000)={0x1, 0x0, 0x0, 0x40}) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x400000, 0x0) getsockopt$inet_sctp_SCTP_AUTOCLOSE(r3, 0x84, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) fcntl$lock(r1, 0x6, &(0x7f0000603000)) 04:53:28 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10088) 04:53:28 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x0) 04:53:28 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000003a00)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000002000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, &(0x7f0000000040)="0f00d20f23e466b8000001000f23d80f21f86635400000800f23f80f20e06635000002000f22e00f237067f0802100640f0056b23cef0f320f73f76a", 0x3c}], 0x1, 0x0, &(0x7f0000000140), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@textreal={0x8, &(0x7f00000000c0)="f20f94ff0f01cf0fc72f6436f0f79b450066b9800000c00f326635000100000f3066b91a09000066b8fdafa70566ba000000000f30650fc7a900700f01cf642e3e0f005a0fb800098ee0", 0x4a}], 0x104, 0x0, &(0x7f0000000100), 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000003980)={0x20001, 0x0, [0x1d, 0x6000000000000, 0x0, 0x174, 0x0, 0x0, 0x0, 0xa589]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = msgget$private(0x0, 0x240) msgrcv(r3, &(0x7f0000000140)={0x0, ""/75}, 0x53, 0x2, 0x1800) 04:53:28 executing program 5: r0 = socket$key(0xf, 0x3, 0x2) getsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000040), &(0x7f0000000080)=0x4) socket$inet6(0xa, 0x800, 0x2) 04:53:28 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") syz_mount_image$reiserfs(&(0x7f0000000040)='reiserfs\x00', &(0x7f0000000780)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000001c40)=ANY=[]) r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) socketpair$inet(0x2, 0x1, 0x424, &(0x7f0000000180)) ioctl$KVM_IOEVENTFD(r1, 0x40086602, &(0x7f0000000100)={0x14000}) symlinkat(&(0x7f0000000080)='./file0\x00', r1, &(0x7f00000000c0)='./file0\x00') setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f00000001c0)={0x9, 0x80, 0x1, 0xe6f}, 0x14) unlinkat(r1, &(0x7f0000000200)='./file0\x00', 0x0) 04:53:28 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$netlink(0x10, 0x3, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) getsockopt$netlink(r1, 0x10e, 0x9, &(0x7f0000000040)=""/4, &(0x7f0000000000)=0x4) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x30801, 0x0) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000100)={0x7, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}, {}]}) ioctl$KDGKBTYPE(r2, 0x4b33, &(0x7f00000000c0)) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000700)={0x9, 0x5, 0x217, 0xb117, &(0x7f0000000140)=[{}, {}, {}, {}, {}]}) 04:53:28 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x80000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:28 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x11200) 04:53:28 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000265ff7)='/dev/sg#\x00', 0x0, 0x0) io_cancel(0x0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f00000000c0)="afcac670b33dc84b84e117ce96eac7cbb70c1545d3df33c7b66ad812fa895d57299e860f50595dd0cf06d261a3e92efea3ca4aa8b080fec15f0621647e2a293952782cd56355681baf4ac1b7fee8cc4206e2c17bc66c981215b200d85536d284df6847cacd8e1b9bc42a0ff88dad0dd271206814ca90b7ad8e5c1e9f09bd96eed90898b6", 0x84}, &(0x7f00000001c0)) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='/dev/sg#\x00'}, 0x10) accept4$packet(0xffffffffffffffff, &(0x7f0000002040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000002080)=0x14, 0x80800) setsockopt$inet_mreqn(r1, 0x0, 0x0, &(0x7f00000020c0)={@empty, @rand_addr=0x4, r2}, 0xc) ioctl(r0, 0x40000000002275, &(0x7f0000000140)) 04:53:28 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10300) 04:53:28 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x1000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 198.627127] REISERFS warning (device loop2): sh-2021 reiserfs_fill_super: can not find reiserfs on loop2 [ 198.719256] REISERFS warning (device loop2): sh-2021 reiserfs_fill_super: can not find reiserfs on loop2 04:53:29 executing program 1: r0 = syz_init_net_socket$bt_sco(0x1f, 0x3, 0x3) r1 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x10001, 0x8000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000080)={0x7, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000000)={0x1}, 0x8) shutdown(r0, 0x0) 04:53:29 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x19, &(0x7f0000548000)=0x4001, 0x4) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000080)={0x0, 0x2a72, 0x5, 0x401}, &(0x7f00000000c0)=0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000180)={r1, @in={{0x2, 0x4e24, @multicast2=0xe0000002}}, 0x9, 0x4, 0x3, 0x10001, 0xc}, 0x98) recvmsg(r0, &(0x7f0000000840)={&(0x7f0000000100)=@sco, 0x80, &(0x7f0000000740), 0x0, &(0x7f0000000800)=""/47, 0x2f}, 0x0) sendto$inet6(r0, &(0x7f0000737000), 0x0, 0x0, &(0x7f0000b85fe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) sendto$inet6(r0, &(0x7f0000000880), 0x0, 0x0, &(0x7f0000000440)={0xa, 0x4e24, 0x0, @loopback={0x0, 0x1}}, 0x1c) recvmsg(r0, &(0x7f0000000400)={&(0x7f0000000000)=@nl=@proc, 0xc, &(0x7f0000000040), 0x0, &(0x7f00000003c0)=""/36, 0x24}, 0x2000) 04:53:29 executing program 5: mlockall(0x5) munlockall() r0 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) ioctl$KVM_GET_VCPU_MMAP_SIZE(r0, 0xae04) 04:53:29 executing program 2: r0 = socket$inet6(0xa, 0x802, 0x8000000000088) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = getpid() getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000380)={0x0, 0x0}, &(0x7f00000003c0)=0xc) lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r5 = getpgrp(0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000004c0)={{{@in=@dev, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@remote}}, &(0x7f00000005c0)=0xe8) fstat(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000680)={0x0}, &(0x7f00000006c0)=0xc) stat(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000007c0)='./file0\x00', &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000b40)=0x0) getresuid(&(0x7f0000000b80), &(0x7f0000000bc0), &(0x7f0000000c00)=0x0) r13 = getegid() r14 = gettid() lstat(&(0x7f0000000c40)='./file0\x00', &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r0, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r17 = gettid() r18 = getuid() lstat(&(0x7f0000000d80)='./file0\x00', &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r20 = getpid() getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000001040)={{{@in=@multicast1, @in6=@ipv4={[], [], @multicast2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@mcast2}}, &(0x7f0000001140)=0xe8) getresgid(&(0x7f0000001180)=0x0, &(0x7f00000011c0), &(0x7f0000001200)) sendmmsg$unix(r1, &(0x7f00000012c0)=[{&(0x7f0000000000)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000340)=[{&(0x7f0000000080)="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", 0xfb}, {&(0x7f0000000180)="2cf624cd0cd2ac5cf0348f91de5cba85130a533a604a388b613a3e7bd68d48825b8a72b48c4e9d3dca92952b43df6d8bd48001562e45a181c23b077c07f90201c459a53889aea3b32e4b07866709170ba0b3f91c9e05c79c609deafa818f3882c45aa84308383cca8d3d8759f3976533370acae499c9a5a7", 0x78}, {&(0x7f0000000200)="09e4a412a0e89a9dca3c3b0a5040", 0xe}, {&(0x7f0000000240)="f03335df4e33a5db826fa952b74f6d56398dc01bedd2ce167e5b2b005695ec1043a32cacd798e3211672df36cadde443c24250e7177fe71a3eafa6590e7b40fecfcde836b23a5471051ebe87e0558da8644f15c5c62e7a3eab1053edb5bc85205cfcaad3123cc9d33ed786582bdbd1d1ca644059dab327610d28e9866bc84cbff59fa5f2bfaa3e401828526345c81e79fd5c17f633951f1ae5d6ed5a95f34637943fc2167a37315113646d2c6c31c4ed09228675296102bfa8c17825de8412274a38ac008a2779e3027697e0ff04870959dcb5a094909b9bc491fe9cb3d6fd9e3e", 0xe1}], 0x4, &(0x7f0000000880)=[@cred={0x20, 0x1, 0x2, r2, r3, r4}, @rights={0x38, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0, r0, r0]}, @rights={0x30, 0x1, 0x1, [r0, r0, r0, r0, r0, r0, r0, r0]}, @rights={0x28, 0x1, 0x1, [r0, r0, r0, r0, r0]}, @cred={0x20, 0x1, 0x2, r5, r6, r7}, @cred={0x20, 0x1, 0x2, r8, r9, r10}, @rights={0x28, 0x1, 0x1, [r0, r0, r0, r0, r0, r0]}], 0x118, 0x80}, {&(0x7f00000009c0)=@file={0xa8696f0f8a769fbc, './file0\x00'}, 0x6e, &(0x7f0000000b00)=[{&(0x7f0000000a40)="e523ca9b9b960891e996ef24eb8a333a42ae8a6d32cde2b97fd1bcb16c317e51f31fd4104e40891d8bb300d17c7c62ef0eddd87eda7140c46f0bd92d9a0bed80f5edeeb8da8bda350dba07916a3778bf61ddbdcbadda6179b61e9eb00f48433cef38179b37397025a89aefd624dc362715103b1a143e4dfd7350e9ac7450dab34a56d5c45bbb78711c0559a791c0d6adf669a8884cca5a769ef18e3efa9fb7485c899839758e2e", 0xa7}], 0x1, &(0x7f0000000e40)=[@cred={0x20, 0x1, 0x2, r11, r12, r13}, @cred={0x20, 0x1, 0x2, r14, r15, r16}, @rights={0x20, 0x1, 0x1, [r0, r0, r0, r0]}, @cred={0x20, 0x1, 0x2, r17, r18, r19}], 0x80, 0x1}, {&(0x7f0000000ec0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001000)=[{&(0x7f0000000f40)="f3f229681dd4cca1f0c970cc68548d2eb21c25f784681ca88c29e60deb82ad887804d49fca4598ae7b407e", 0x2b}, {&(0x7f0000000f80)="69801d0df0d6db70f411d3de9c8323261306b798ca5e11246a311e742f39d428ae837d8e4349b1b4f237c852c6b853f834668e5d6ec7307af0a2400c21d35d719f9a0cb8f636c602738e0b5b683574b22e6d0545c2", 0x55}], 0x2, &(0x7f0000001240)=[@cred={0x20, 0x1, 0x2, r20, r21, r22}, @rights={0x28, 0x1, 0x1, [r0, r0, r0, r0, r0, r0]}], 0x48, 0x4000000}], 0x3, 0x4) setsockopt$inet6_udp_int(r0, 0x11, 0x100000000b, &(0x7f0000c29ffc)=0x10003, 0x4) 04:53:29 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x8000011) 04:53:29 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x0) 04:53:29 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x0) 04:53:29 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x80000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:29 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10005) 04:53:29 executing program 1: r0 = fcntl$getown(0xffffffffffffffff, 0x9) move_pages(r0, 0x1, &(0x7f0000000000)=[&(0x7f00003b7000/0x4000)=nil], 0x0, &(0x7f0000000040)=[0x0, 0x0, 0x0], 0x2) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x31, 0xffffffffffffffff, 0x0) prctl$setname(0xf, &(0x7f0000a9aff2)="6c6f2c70726f635c4750572af493") 04:53:29 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = memfd_create(&(0x7f0000000100)='\x00', 0x2) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000140)="670f2214baf80c66b81fdbe68366efbafc0cec8015d6dfcfba2100b80500eff282959a81152e0f22c20f062e3e670f6498710000000f01df", 0x38}], 0x1, 0x4, &(0x7f00000001c0), 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r4, 0x4068aea3, &(0x7f0000000040)={0x7b}) ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) 04:53:29 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket(0x12, 0x7, 0x0) sendto(r1, &(0x7f0000cfefee)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f0000000f40)=@ethernet={0x0, @random}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/28, 0x1c}], 0x1, &(0x7f0000002400)=""/191, 0xbf}}, {{&(0x7f0000003440)=@l2, 0x80, &(0x7f0000003680), 0x3c7, &(0x7f00000036c0)=""/64, 0xffffff88}}], 0x2, 0x0, &(0x7f0000003700)={0x77359400}) setsockopt$bt_BT_CHANNEL_POLICY(r1, 0x112, 0xa, &(0x7f0000000000)=0x6, 0x4) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000040)={0x80, 0x40, 0x2, 0x7f, 0x8}) 04:53:29 executing program 1: r0 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x0) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) r1 = syz_open_dev$sndseq(&(0x7f0000027ff3)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000280)={{0xc2}, 'port0\x00'}) 04:53:29 executing program 5: r0 = socket$inet_sctp(0x2, 0x800000000000001, 0x84) sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10) sendto$inet(r0, &(0x7f000026cfff)="c6", 0x1, 0x0, &(0x7f0000033ff0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) shutdown(r0, 0x1) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000004c0)={0x0, @in={{0x2}}, 0x0, 0x0, 0x0, 0x0, 0x34}, 0x98) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa}}, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x98) 04:53:29 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x600, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:29 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x16000) 04:53:29 executing program 2: r0 = accept(0xffffffffffffffff, &(0x7f0000000000)=@pptp, &(0x7f0000000080)=0x80) setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f00000000c0)={@broadcast=0xffffffff, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x8) chroot(&(0x7f0000000100)='./file0\x00') semget(0x1, 0x3, 0x200) recvmsg(r0, &(0x7f0000001380)={&(0x7f0000000140)=@l2, 0x80, &(0x7f0000001300)=[{&(0x7f00000001c0)=""/209, 0xd1}, {&(0x7f00000002c0)}, {&(0x7f0000000300)=""/4096, 0x1000}], 0x3, &(0x7f0000001340)=""/25, 0x19, 0x100000000}, 0x10000) r1 = open(&(0x7f00000013c0)='./file0\x00', 0x80, 0x4) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r1, 0xc058534b, &(0x7f0000001400)={0x7, 0x8c36, 0x4000, 0x6, 0x5, 0x4}) recvmsg(r0, &(0x7f0000002a00)={&(0x7f0000001480)=@ethernet, 0x80, &(0x7f0000002900)=[{&(0x7f0000001500)=""/185, 0xb9}, {&(0x7f00000015c0)=""/240, 0xf0}, {&(0x7f00000016c0)=""/208, 0xd0}, {&(0x7f00000017c0)=""/4096, 0x1000}, {&(0x7f00000027c0)=""/185, 0xb9}, {&(0x7f0000002880)=""/110, 0x6e}], 0x6, &(0x7f0000002980)=""/99, 0x63, 0x8}, 0x20) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, &(0x7f0000002a40)=0x8, 0x8) ioctl$EVIOCGABS20(r1, 0x80184560, &(0x7f0000002a80)=""/114) bind$netlink(r1, &(0x7f0000002b00)={0x10, 0x0, 0x25dfdbfc, 0x1000}, 0xc) ioctl$VHOST_GET_VRING_BASE(r1, 0xc008af12, &(0x7f0000002b40)) fcntl$getown(r1, 0x9) sendmsg$kcm(r0, &(0x7f0000002e80)={&(0x7f0000002b80)=@ax25={0x3, {"f1bf245550d31e"}, 0xffffffffffffff75}, 0x80, &(0x7f0000002d80)=[{&(0x7f0000002c00)="5a185968aaea1d41a3ec35eb42031cab46020bc163384b55bfd14ba52004b5e81f15871c360116e2a53c467aaac0f95a4ebe84e284406ea8e17ab22238aea774f58e37fa70087df7eb554766fc735a6fd4a1189a7ec8db963fd20580c01d06393757573eea3bfe142c8e2ebe13a56d5bcf267222c67e59048ecf31b04913c4be", 0x80}, {&(0x7f0000002c80)="badea5c0d44c2c1d2aec0b632b6de0d1dece4d35007e44fa639d3bb08220cf9d578a7f4adfe8d55f90821a22a5b2acef27905355bc258aadbc90d904a3ea3339dab0f40e679634dac719b11205af59707ff4a97a4db63b5d4fa270ae0fef94151fc621d5732a8c1c4e6aa1b59cd514cfe898f96d238baeeb7e33ae7876acf8b2b8d1beeb702dadfcc3c1a3aaa3144765b8e79bae37355831e01cec5cb27de7125b", 0xa1}, {&(0x7f0000002d40)="016369", 0x3}], 0x3, &(0x7f0000002dc0)=[{0x98, 0xff, 0xf3, "227c90372b1a41b6cb9b433cc1e38857039c9d2a7d10b86c6bb33ddedc451d42d60dad5d70b5d49392979eff2b8b01fe45142ee9230e5baf446d602f96152db42ba4b2343074cfe4fd9c0b35e4bd16389abba859ee20a41dcac18d9eb2a65fe37f82549e9ff90932cbb1995bff791bff8ab43d2b171fe63e9b4cabcbfa72e4995a5233ba34"}], 0x98, 0x810}, 0x4000) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000002f00)={0x4, &(0x7f0000002ec0)=[{0x10000, 0x8000, 0x5, 0x40}, {0x2, 0x7, 0x9, 0xe2a}, {0x2ca5, 0x1, 0x1ff, 0xf8}, {0x8, 0x1, 0xffff, 0x6}]}, 0x10) getsockopt$bt_sco_SCO_OPTIONS(r0, 0x11, 0x1, &(0x7f0000002f40)=""/208, &(0x7f0000003040)=0xd0) setsockopt$RDS_CANCEL_SENT_TO(r1, 0x114, 0x1, &(0x7f0000003080)={0x2, 0x4e24, @multicast1=0xe0000001}, 0x10) write$P9_RCLUNK(r1, &(0x7f00000030c0)={0x7, 0x79, 0x1}, 0x7) r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r3 = open(&(0x7f0000003100)='./file0\x00', 0x400, 0x4) getsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000003140)={0x0, 0xac33}, &(0x7f0000003180)=0x8) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f00000031c0)={r4, @in6={{0xa, 0x4e21, 0x1, @local={0xfe, 0x80, [], 0xaa}, 0x1}}}, &(0x7f0000003280)=0x84) fanotify_init(0x4, 0x101000) fadvise64(r3, 0x0, 0x3, 0x4) ftruncate(r2, 0x6) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000003300)={r5, 0x20, &(0x7f00000032c0)=[@in={0x2, 0x4e23, @broadcast=0xffffffff}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x19}}]}, &(0x7f0000003340)=0x10) bind$inet(r1, &(0x7f0000003380)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) getsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f00000033c0)={@rand_addr, @multicast2}, &(0x7f0000003400)=0xc) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000003440)={0x20, 0x40, 0xffffffffffffff7f, 0x9, 0x7fff}) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) 04:53:30 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000080)=0x1) r1 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x6, 0x10002) ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f0000000100)="99a11ea1e696d7023251d90030761889a3ac377e7b9508b036a0fec0008f5cc68f42a5c0032c4898d334456783283e0025e464526ef0c243864561a9133f06e4d56e64e52ac4c74c8076a769681c7bb59d15d44d72793bac338c9652d5") ioctl$SG_IO(r0, 0x2285, &(0x7f0000000300)={0x53, 0x0, 0x21, 0x0, @buffer={0x0, 0x96, &(0x7f0000000180)=""/150}, &(0x7f0000000440)="7f0002c0d023d7cdcba017933d0c84763f1854263d858a2e8c56907eb180c13443", &(0x7f0000000500)=""/239}) socket$pptp(0x18, 0x1, 0x2) 04:53:30 executing program 1: syz_mount_image$hfsplus(&(0x7f00000001c0)='hfsplus\x00', &(0x7f0000000200)="e91f7189591e9233614b00", 0x4, 0x6, &(0x7f0000000640)=[{&(0x7f0000000240), 0x0, 0x20}, {&(0x7f0000000280)="cedc0fbf816e9ffae623c1d0cdd28835287ad99d8b6644f0e1412eff61f5f4d66313a798a723afa9279a0e0e7b456ae5cc7665f796cfc53921698451d0ce3c8d0f08215333f8f766cc0f3f68fb9c711f0e9cad0e02512cc721ee221dfcdd50599f58a74de5773d5b4d55acf6d0a84a38a7b00791b1645135b27c713239fcf80f3563bd02222de39f3541c5c13221845eb52372524133be6b38ddced6d31adc51dfc974abdf6a51d859a4849e5d26b17c14", 0xb1, 0x1}, {&(0x7f0000000340)="3c17e1603c17780c4c8c5e1892275b3941662e5c83dc7829d6bed7b3d9cab76b90e97e54ecedf9d8cfbe54caf08bd010ec83ecde6deff311a6e65940bdc4f9e57cb1c5cabc88c80aa17023c2323c1a091889996ac8e1e2b8a8577edb33853c6a31dba7eb7839cabe014b441ff1250b957273d9175adb0ec479f7cc88346605dfc20ef51338513ccf135339ef98b2d23dcd9a8d04ae176405784dd63bf7043aadf04742e18bdc4860d345a31e2a03e21c5eb15650ee84c4e2f5df16f067ff49cf8a7c267e508f6f4c6b340b27f305c4e0808171c74ae165abec0497a8d9874e253f472a", 0xe3, 0xff}, {&(0x7f0000000440)="426918bbac0467d5ca0c7e125f62f91a9b6fd5238afb68c12166560336ac22ed41b35300a20666161ea2165de4e76ef4e0dce6f5f46ce46e589fff828133b2a219df13aaedef85f836bfd8d40d21e1a630020a9f4fdd791fa2d791a28a379f0e1be26ac9d964166a779cf65e6213ada801bccbac3182ab0a38cafd461e2e0a4a7015f2bfe966d2b75c0a14be57a883c11caa3321d75d3de5be343909c7e4ffd8ad4460e98a8aaeb3c8a7037895f176d01edd2a178bcc407f150b5fe6411538ce44dbf2ea5e6fc014146ac005c33a71d009631ae4234a5e134c44c4e7d7898e873aa01026e3de98f76be9355be5b162cbdb", 0xf1, 0x400}, {&(0x7f0000000540)="04d8f06dcd3f3890a03f535d64a843c6b340a1a053ab98426f313aa9ce2163b21b661e6a07b0de91d8cb227936f2396a6b9efdb33e3ed35292e8067d13389f", 0x3f, 0x2}, {&(0x7f0000000580)="ea9022c37b1c37ba2e1690dcfeb4a5f386f3d5d74a4b88bcc658131210b79d81ccc11181db6343d37cd7465354a55a2040c92bec1a4e05f04576a68e1502aaee72c53b291804ee97b0078e1443261cdd05bd243bcd5d50d2e426a34904ec8e16fc4eb2a77a430d5b491b53ad274ab0ae3e4095713e46663c507970506f0d1a051438035af833301566aa47f6ee188e99931402c9175c1c3a16ab8d4e347f060f7f91", 0xa2, 0x10000}], 0x400, &(0x7f0000000700)={[{@nls={'nls', 0x3d, 'iso8859-4'}, 0x2c}, {@part={'part', 0x3d, [0x33, 0x2d, 0x2d]}, 0x2c}]}) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/qat_adf_ctl\x00', 0x0, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000000180)={'ip6_vti0\x00', 0x80}) r1 = socket$unix(0x1, 0x1, 0x0) bind$unix(r1, &(0x7f0000003000)=@file={0x1, "e91f7189591e9233614b00"}, 0xc) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000240)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000740)=0x1c) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000780)={r2, 0x80}, &(0x7f00000007c0)=0x8) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000800)={r2, 0x4}, &(0x7f0000000840)=0x8) r3 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0) getdents64(r3, &(0x7f0000000040)=""/166, 0xa6) getdents(r3, &(0x7f0000000000)=""/46, 0xfffffffffffffe1b) 04:53:30 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xf000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 200.267948] hfsplus: unable to parse mount options [ 200.279229] QAT: Invalid ioctl [ 200.296766] hfsplus: unable to parse mount options [ 200.310408] QAT: Invalid ioctl 04:53:30 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x0) 04:53:30 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = userfaultfd(0x0) r2 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x3, 0x143000) ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f0000000180)={{0x2, 0x4e24}, {0x307, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x2, {0x2, 0x4e24, @loopback=0x7f000001}, 'vlan0\x00'}) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x40}) read(r1, &(0x7f00000000c0)=""/128, 0x80) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000616000/0x4000)=nil, 0x4000}, 0x1}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) 04:53:30 executing program 7: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x0) 04:53:30 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x18800) 04:53:30 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x3, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:30 executing program 1: r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f00000000c0)={0x0, 0x0}) ptrace$setopts(0x4206, r1, 0x0, 0x0) kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff, 0x1}) ptrace(0x14207, r1) ptrace$setregset(0x4209, r1, 0x20000000, &(0x7f0000000080)) 04:53:30 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000040)="025cc83d6d345f8f762070") pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) readv(r1, &(0x7f0000000240)=[{&(0x7f0000000180)=""/142, 0x8e}], 0x1) pipe(&(0x7f0000000940)={0xffffffffffffffff}) tee(r3, r2, 0x8, 0x0) close(r3) vmsplice(r0, &(0x7f0000000700)=[{&(0x7f00000000c0)="90d1dc25ce86f9f52b1f83288650510f84d160bf714d4f45d0a5b6bfdd6da8a04d2c9914c32f491299071f94d443f29ce5c523a3d7f85864c6a5804aa7344c212e"}, {&(0x7f0000000280)="d844f92601e79a3150f74193de23a114fc72d1872975a45cf18031c46de5924d8f5b32d8500330d222c6c469e5261b7fa5e2d0668b2f8e7eefcfe2d7d4f32c9671923e893fd7ebfc76831fb061e297ea747809c9d22e386b1aff81cb2c89cf17aee48ea299548c21557a8794da94143c97f8b36e0f7abadd3cec4f00a4bfa283b5860f9dd61a15dd284fee0b047295f7f40ff0ea56083420f9f954a706c6967592f594b8211239231bdcd8d9b20fc59427893b73d94c2981ff75b308f7bd922e38e5700d3edf9794ea466ab7"}, {&(0x7f0000000380)="23cf8b10af8f0ed247cbf86874cd88f2b297d2ffecc30b44b190ec865b5f2f5960c9e1936abac2f17ecf37dcdd94ee52ddae33b64fc9a8e803c00c836216a9b26f1bc214e0858f38b70d1c6803a41ef3bcf63303d4adfde7a211490bcb24cb33ed43fae672c0c0c3678b68b9a4223bcf4724038a1807c59fda79560704743f3e85bbbff08617cb34a5ae64a23c0998a907435ae5fcab3e07086d1ef72acae74ac13754ecfe2d3086a3c5226c862a28115e2528fb6a0db79cea8bb139d2b62412692d127acb346007e34b3bc2f10dadea086dfa2661caeb867f4daa9ca68b26815c9f25"}, {&(0x7f0000000480)="927821a196e9aa1f7d9ab63c0e2dfbbe81da5c746782255a175b66ad5472be2bd1b7511f9d78c0b4cf9dc3a7eb1b0c8656f876efc381967e491bfb6bed44068b8216e006e3351c473f2c4639d7476cb3297404728a2e476a52271ab033b5cf49ed1d344af35761fda4a77a8f94ea490ed5b0afbbdf936dba1329ef537b6881531a7da39d61eeb7b46c71f7cd02072a308459c7e3fb5f", 0x31b}, {&(0x7f0000000540)="410801f3eafbfbe37dce6a1f24208b5326a3eb0b5d00b81787fe6666f6a6a6351a2c3abe04b52c6c2621e263f9ed4fbb97af7997519387c44e316059c58ce7d56c5143910407f962f63d461bda5b9310a6aa51a9dabf51040a0c4c0459cf5a7353f044d57de504f033f823f2994c2c68d214f6990a83b46b2fe70542f710713ff911aff2d307e06acdfc953ab154d226fed7fdea63db815c02eccd2f47ed67cbb94133ba9bfa0cf7dc5f2d"}, {&(0x7f0000000600)="bcd53e850fb170fee2d8bfac94500421bf0ef6fa4ef2db616183e08c759e857100e250610fba49e81925dd87ccb4c9353ac1199587cb4a1ba599d81da8f87bb448073a4306db86267a54455e5e2f338ae74a16e3c6d2c1ae9571e4f376d8961ad83c409a94e5af26a14ac48b65d12b2ba882a1fdd81207ce72e03ea6bfb673825ea94b530ee931f20789da6a0ec4f3ac05b97387cb9dbd92370648841298ecc17f310a113b9968948e2000279517bf71e15f0850e52f0c68cb4668d03eb1fb68fc0b640cfcf7873062e2b02e3a0191109076f64f1dd62eeef682e29bb68acb6563969c670a70d41acf"}], 0x1000000000000154, 0x3) 04:53:30 executing program 1: socket$nl_route(0x10, 0x3, 0x0) 04:53:30 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x13f00) 04:53:30 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x1000000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:30 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f000000b000)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0xffffffffffffffff}, 0xc, &(0x7f0000beeff0)={&(0x7f0000000140)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in6=@dev={0xfe, 0x80}, @in=@rand_addr}, {@in6=@mcast2={0xff, 0x2, [], 0x1}, 0x0, 0x32}, @in6=@ipv4={[], [0xff, 0xff]}, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_aead={0x4c, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0x0, 0x60}}]}, 0x13c}, 0x1, 0x0, 0x0, 0x4008800}, 0x0) r2 = fcntl$dupfd(r0, 0x403, r0) ioctl$SCSI_IOCTL_PROBE_HOST(r2, 0x5385, &(0x7f0000000040)) ioctl$SCSI_IOCTL_GET_PCI(r2, 0x5387, &(0x7f0000000000)) 04:53:30 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$can_bcm(0x1d, 0x2, 0x2) accept$packet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000180)=0x14) connect$can_bcm(r1, &(0x7f0000000200)={0x1d, r2}, 0x10) pselect6(0x40, &(0x7f00000001c0)={0x4, 0xb58b, 0xb46, 0x1, 0x0, 0x2, 0xa5, 0x85e}, &(0x7f0000000240)={0xfffffffffffffffb, 0x8, 0x0, 0x1, 0x9, 0x1, 0x6}, &(0x7f0000000500)={0x10001, 0x100000000, 0x4, 0x1, 0x5, 0x7ff, 0x1, 0x100}, &(0x7f0000000540)={0x77359400}, &(0x7f00000005c0)={&(0x7f0000000580)={0xfad6}, 0x8}) sendmsg$can_bcm(r1, &(0x7f00000003c0)={&(0x7f0000000280)={0x1d}, 0x10, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB="05000000000000000000000000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x7530, @ANYBLOB="00000000010000800000071cda1f24d7bf00505ad82d2d722201000000388dbba2b1504234bb040ab5eca078d176c861005025131427c465445c83102aa28d487f8a3c4d961f1bf8fe914d89e3acc79486ba5f73de0ac2523bbf14d707b34c676acc030148cd2f60cf2ba8de48c735d7941c6303bc8e667edb52af978861125272445dedf2b6d9e1b0ac7be5"], 0x48}, 0x1}, 0x0) sendmsg$can_bcm(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x1d}, 0x10, &(0x7f0000000040)={&(0x7f00000000c0)={0x7, 0x0, 0x0, {0x0, 0x2710}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "c4d981aeb150d176"}}, 0x48}, 0x1}, 0x0) r3 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$sock_inet_SIOCDARP(r3, 0x8953, &(0x7f0000000480)={{0x2, 0x4e23, @multicast2=0xe0000002}, {0x307, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x16}}, 0x2, {0x2, 0x4e21, @local={0xac, 0x14, 0x14, 0xaa}}, 'bcsh0\x00'}) recvmmsg(r1, &(0x7f0000000600)=[{{&(0x7f0000000400)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @dev}}}, 0x80, &(0x7f00000005c0)}}], 0x1, 0x0, &(0x7f00000006c0)) 04:53:30 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10008) 04:53:30 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x10000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:30 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x15fff) 04:53:30 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x511202, 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000100)={0x0}) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000140)={r2}) setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x9}, 0xb) sendto$inet(r0, &(0x7f0000000000)="f2", 0x1, 0x0, &(0x7f00000000c0)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) clock_gettime(0x0, &(0x7f00000054c0)={0x0, 0x0}) recvmmsg(r0, &(0x7f00000052c0)=[{{&(0x7f0000003d80)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff}}, 0x80, &(0x7f0000003fc0)=[{&(0x7f0000003f00)=""/181, 0xb5}], 0x1}}, {{&(0x7f0000004000)=@hci, 0x80, &(0x7f00000051c0), 0x0, &(0x7f0000005240)=""/105, 0x69}}], 0x2, 0x2000, &(0x7f0000005500)={0x0, r3+10000000}) getsockopt$inet_sctp6_SCTP_MAXSEG(r4, 0x84, 0xd, &(0x7f0000000180)=@assoc_value={0x0, 0x100}, &(0x7f00000001c0)=0x8) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000200)={r5, 0x26}, &(0x7f0000000240)=0x8) 04:53:31 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10060) 04:53:31 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap(&(0x7f000053b000/0x2000)=nil, 0x2000, 0x3, 0x40000002871, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x80000) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r2, 0x408, 0x70bd2a, 0x25dfdbfe, {0x2}, [@IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x40) mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00000cc000/0x4000)=nil) mmap(&(0x7f0000000000/0xfd8000)=nil, 0xfd8000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 04:53:31 executing program 4 (fault-call:7 fault-nth:0): r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:31 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x12000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:31 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8919, &(0x7f0000000100)="02680a0000000000000200000000000075973df80a0a181e8c472571a6041a1850ed88c44ba3af36b8d8248f67800da22837eb149b1eb6cc237e07630c844f828e32b296c63ed1d227f9d74aa4cec4651a8e521d826a6f7154ba52fa24fc0fd9209cb2d3307c45594ce0950be9e86d8772e0933feda6") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1000000000000000) r4 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) syz_kvm_setup_cpu$x86(r4, r3, &(0x7f000000c000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000080)="f20f2d7e00c4e3bd40ce630f07f7cd0c000000660f01c90ff8cd0fc7588ab8ad6e00000f23d80f21f835000000c00f23f8c4e3cd6971f500f20f08", 0x3b}], 0x1, 0x0, &(0x7f0000000100), 0x0) 04:53:31 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x16400) 04:53:31 executing program 1: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000001c0)='rdma.current\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x1000000000003, 0x7) ioctl(r2, 0x8912, &(0x7f0000000080)="025cc83d6d345f8f762070") write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x58) preadv(r1, &(0x7f0000000240), 0x9b, 0x0) 04:53:31 executing program 3: delete_module(&(0x7f0000000080)='\x00', 0x200) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x3, 0x200000000000034e, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x84, 0x0, 0x0, 0x1}, 0xffffffffffffff0e) 04:53:31 executing program 7 (fault-call:7 fault-nth:0): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:31 executing program 1: r0 = inotify_init1(0x0) r1 = socket(0x10, 0x2, 0x4000000000) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000000000)=0x18) getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f0000000080), &(0x7f00000000c0)=0x4) setresuid(0x0, r2, 0x0) rt_sigreturn() fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f0000000040)={0x0, 0x0}) ptrace$setopts(0x4206, r3, 0x0, 0x0) 04:53:31 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x13000000) [ 201.735527] FAULT_INJECTION: forcing a failure. [ 201.735527] name failslab, interval 1, probability 0, space 0, times 0 [ 201.746861] CPU: 0 PID: 13619 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 201.755293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 201.765173] Call Trace: [ 201.767758] dump_stack+0x1c9/0x2b4 [ 201.771380] ? dump_stack_print_info.cold.2+0x52/0x52 [ 201.776596] ? trace_hardirqs_on+0x10/0x10 [ 201.780826] should_fail.cold.4+0xa/0x11 [ 201.784878] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 201.789886] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 201.794989] ? kasan_check_write+0x14/0x20 [ 201.799221] ? do_raw_spin_lock+0xc1/0x200 [ 201.803443] ? alloc_set_pte+0xaf6/0x1790 [ 201.807592] ? trace_hardirqs_on+0x10/0x10 [ 201.811818] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 201.816833] ? filemap_map_pages+0xca2/0x1990 [ 201.821321] ? trace_hardirqs_on+0x10/0x10 [ 201.825569] ? lock_acquire+0x1e4/0x540 [ 201.829569] ? fs_reclaim_acquire+0x20/0x20 [ 201.833885] ? lock_downgrade+0x8f0/0x8f0 [ 201.838043] ? check_same_owner+0x340/0x340 [ 201.842360] ? rcu_note_context_switch+0x730/0x730 [ 201.847278] __should_failslab+0x124/0x180 [ 201.851506] should_failslab+0x9/0x14 [ 201.855297] kmem_cache_alloc_trace+0x2cb/0x780 [ 201.859975] tcp_sendmsg_locked+0x302a/0x3f10 [ 201.864461] ? lock_acquire+0x1e4/0x540 [ 201.868419] ? lock_downgrade+0x8f0/0x8f0 [ 201.872577] ? lock_acquire+0x1e4/0x540 [ 201.876557] ? tcp_sendpage+0x60/0x60 [ 201.880344] ? __fget+0x4d5/0x740 04:53:31 executing program 5: socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dsp\x00', 0x2082, 0x0) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000002c0)=r2, 0x4) r3 = accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$sock_proto_private(r3, 0x89e7, &(0x7f0000000080)="5c3a97ff693ebe4dd6fa39a37e6ae2743bd094760cf8ff05537d69ec5a309988ed56a0430754d4af333a880a7e960fbdf53a95e5dcfabfec2218f30c1e1bf6524024566ee5e65f1c49b685236cdea0b84753d1df682d6615c4ca987d1c4a14cf75ee78956204b88acc17e74f") r4 = socket$inet6(0xa, 0x1000000200002, 0x0) ioctl(r4, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc0\x00', 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x1a) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r5, 0x84, 0x1c, &(0x7f0000000180), &(0x7f00000001c0)=0x4) syz_mount_image$msdos(&(0x7f0000000000)='msdos\x00', &(0x7f00000003c0)='./file0\x00', 0xe800, 0x1, &(0x7f0000000100)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010a7007027400f8", 0x16}], 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="d7"]) 04:53:31 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x2000808912, &(0x7f0000000080)="025cc83d6d345f8f762070") socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000016000)=[{0x28, 0x0, 0x0, 0xfffffffffffff02c}, {0x6}]}, 0x10) 04:53:31 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x2000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:31 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140), 0x0) r1 = accept$alg(r0, 0x0, 0x0) r2 = accept4(r1, 0x0, &(0x7f0000000080), 0x0) sendmmsg$inet_sctp(r2, &(0x7f0000001d40)=[{&(0x7f0000001b80)=@in={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10, &(0x7f0000001d00)}], 0x1, 0x0) sendto$inet6(r2, &(0x7f0000000000)="1964f6eb38e2c0afc5828da627497868a7f11781b6ef567b9506f018bc7443616499735ba3580dab26e264b925e57e989fc4bd688aa14cf5944c6e2b7212122f84639072", 0x44, 0x0, &(0x7f00000000c0)={0xa, 0x4e20, 0x5, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}, 0x24}, 0x1c) [ 201.883781] ? _parse_integer+0x190/0x190 [ 201.887920] ? lock_acquire+0x1e4/0x540 [ 201.891892] ? tcp_sendmsg+0x21/0x50 [ 201.895596] ? lock_release+0xa30/0xa30 [ 201.899559] ? kasan_check_read+0x11/0x20 [ 201.903707] ? do_raw_spin_unlock+0xa7/0x2f0 [ 201.908119] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 201.912707] ? kasan_check_write+0x14/0x20 [ 201.916948] ? lock_sock_nested+0x9f/0x120 [ 201.921169] ? trace_hardirqs_on+0xd/0x10 [ 201.925301] ? __local_bh_enable_ip+0x161/0x230 [ 201.929955] tcp_sendmsg+0x2f/0x50 [ 201.933483] inet_sendmsg+0x1a1/0x690 [ 201.937270] ? ipip_gro_receive+0x100/0x100 [ 201.941579] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 201.947104] ? security_socket_sendmsg+0x94/0xc0 [ 201.951852] ? ipip_gro_receive+0x100/0x100 [ 201.956174] sock_sendmsg+0xd5/0x120 [ 201.959881] __sys_sendto+0x3d7/0x670 [ 201.963668] ? __ia32_sys_getpeername+0xb0/0xb0 [ 201.968319] ? vfs_write+0x2f3/0x560 [ 201.972024] ? wait_for_completion+0x8d0/0x8d0 [ 201.976595] ? lock_release+0xa30/0xa30 [ 201.980554] ? fsnotify_first_mark+0x350/0x350 [ 201.985119] ? __fsnotify_parent+0xcc/0x420 [ 201.989449] ? fsnotify+0x14e0/0x14e0 [ 201.993236] ? __sb_end_write+0xac/0xe0 [ 201.997194] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 202.002715] ? fput+0x130/0x1a0 [ 202.005982] ? ksys_write+0x1ae/0x260 [ 202.009770] ? __ia32_sys_read+0xb0/0xb0 [ 202.013814] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 202.019339] __x64_sys_sendto+0xe1/0x1a0 [ 202.023399] do_syscall_64+0x1b9/0x820 [ 202.027281] ? finish_task_switch+0x1d3/0x870 [ 202.031788] ? syscall_return_slowpath+0x5e0/0x5e0 [ 202.036720] ? syscall_return_slowpath+0x31d/0x5e0 [ 202.041640] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 202.046638] ? prepare_exit_to_usermode+0x291/0x3b0 [ 202.051638] ? perf_trace_sys_enter+0xb10/0xb10 [ 202.056292] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 202.061131] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 202.066305] RIP: 0033:0x455e29 04:53:32 executing program 7 (fault-call:7 fault-nth:1): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) [ 202.069474] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 202.088603] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 202.096308] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 202.103571] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 202.110834] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 202.118100] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 202.125364] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 0000000000000000 04:53:32 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000440)="025cc83d6d345f8f762070") r1 = creat(&(0x7f0000000240)='./file0\x00', 0x0) ioctl$fiemap(r1, 0x40086602, &(0x7f00000000c0)=ANY=[]) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) setsockopt$inet6_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000080)={0x2c0b}, 0x4) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000200)={0x0, 0xfffffffffffffd1c, 0xfa00, {0x0, &(0x7f00000001c0)}}, 0xffffff2b) ioctl$fiemap(r2, 0xc020660b, &(0x7f0000000040)={0x0, 0x20, 0x5}) ioctl$fiemap(r2, 0x6609, &(0x7f0000000140)=ANY=[]) 04:53:32 executing program 1: mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = creat(&(0x7f0000000000)='./control/file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000f86000)='./control/file0\x00') mount(&(0x7f0000000080)='./control/file1\x00', &(0x7f00000000c0)='./control\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) syz_fuseblk_mount(&(0x7f0000000140)='./control\x00', &(0x7f00000001c0)='./control/file0/file0\x00', 0x400000, 0x0, 0x0, 0x1ff, 0x80000000, 0x2000) close(r0) [ 202.384715] FAT-fs (loop5): Unrecognized mount option "×" or missing value [ 202.397689] FAULT_INJECTION: forcing a failure. [ 202.397689] name failslab, interval 1, probability 0, space 0, times 0 [ 202.409090] CPU: 0 PID: 13643 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 202.417510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 202.426868] Call Trace: [ 202.429454] dump_stack+0x1c9/0x2b4 [ 202.433079] ? dump_stack_print_info.cold.2+0x52/0x52 [ 202.438262] ? rcu_is_watching+0x8c/0x150 [ 202.442402] should_fail.cold.4+0xa/0x11 [ 202.446449] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 202.451551] ? fib_insert_alias+0x1200/0x1200 [ 202.456042] ? trace_hardirqs_on+0x10/0x10 [ 202.460274] ? trace_hardirqs_on+0x10/0x10 [ 202.464496] ? save_stack+0xa9/0xd0 [ 202.468113] ? save_stack+0x43/0xd0 [ 202.471725] ? kasan_kmalloc+0xc4/0xe0 [ 202.475594] ? kasan_slab_alloc+0x12/0x20 [ 202.479727] ? kmem_cache_alloc+0x12e/0x760 [ 202.484036] ? __d_alloc+0xc8/0xd50 [ 202.487649] ? d_alloc+0x96/0x380 [ 202.491099] ? d_alloc_parallel+0x15a/0x1ea0 [ 202.495575] ? lookup_open+0x54f/0x1b40 [ 202.499538] ? path_openat+0x246e/0x5620 [ 202.503595] ? do_filp_open+0x255/0x380 [ 202.507554] ? do_sys_open+0x584/0x720 [ 202.511433] ? do_syscall_64+0x1b9/0x820 [ 202.515486] ? trace_hardirqs_on+0x10/0x10 [ 202.519727] ? trace_hardirqs_on+0x10/0x10 [ 202.523968] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 202.529501] ? find_exception+0x517/0xc50 [ 202.533645] __should_failslab+0x124/0x180 [ 202.537871] should_failslab+0x9/0x14 [ 202.541662] kmem_cache_alloc+0x47/0x760 [ 202.545724] ? trace_hardirqs_on+0x10/0x10 [ 202.549951] dst_alloc+0xbb/0x1d0 [ 202.553392] rt_dst_alloc+0x102/0x520 [ 202.557179] ? fnhe_flush_routes+0x480/0x480 [ 202.561578] ? __unlock_page_memcg+0x53/0x100 [ 202.566079] ? lock_downgrade+0x8f0/0x8f0 [ 202.570213] ? kasan_check_read+0x11/0x20 [ 202.574351] ip_route_output_key_hash_rcu+0xa5b/0x3500 [ 202.579618] ? ip_route_input_noref+0x270/0x270 [ 202.584275] ? lock_acquire+0x1e4/0x540 [ 202.588246] ? is_bpf_text_address+0xae/0x170 [ 202.592739] ? lock_downgrade+0x8f0/0x8f0 [ 202.596875] ? lock_release+0xa30/0xa30 [ 202.600835] ? lock_acquire+0x1e4/0x540 [ 202.604797] ? ip_route_output_key_hash+0x1ab/0x3b0 [ 202.609799] ? lock_release+0xa30/0xa30 [ 202.613757] ? is_bpf_text_address+0xd7/0x170 [ 202.618236] ? kernel_text_address+0x79/0xf0 [ 202.622632] ? __kernel_text_address+0xd/0x40 [ 202.627111] ? unwind_get_return_address+0x61/0xa0 [ 202.632043] ip_route_output_key_hash+0x242/0x3b0 [ 202.636871] ? ip_route_output_key_hash_rcu+0x3500/0x3500 [ 202.642406] ? save_stack+0xa9/0xd0 [ 202.646021] ? save_stack+0x43/0xd0 [ 202.649634] tcp_v4_connect+0x12b0/0x1db0 [ 202.653771] ? tcp_v4_parse_md5_keys+0x340/0x340 [ 202.658520] ? lock_acquire+0x1e4/0x540 [ 202.662481] __inet_stream_connect+0x964/0x1150 [ 202.667137] ? lock_release+0xa30/0xa30 [ 202.671110] ? inet_dgram_connect+0x2e0/0x2e0 [ 202.675595] ? kasan_unpoison_shadow+0x35/0x50 [ 202.680162] ? kasan_kmalloc+0xc4/0xe0 [ 202.684038] ? kmem_cache_alloc_trace+0x318/0x780 [ 202.688867] tcp_sendmsg_locked+0x2882/0x3f10 [ 202.693348] ? lock_acquire+0x1e4/0x540 [ 202.697305] ? lock_downgrade+0x8f0/0x8f0 [ 202.701450] ? lock_acquire+0x1e4/0x540 [ 202.705409] ? tcp_sendpage+0x60/0x60 [ 202.709194] ? __fget+0x4d5/0x740 [ 202.712633] ? _parse_integer+0x190/0x190 [ 202.716776] ? lock_acquire+0x1e4/0x540 [ 202.720730] ? tcp_sendmsg+0x21/0x50 [ 202.724430] ? lock_release+0xa30/0xa30 [ 202.728390] ? kasan_check_read+0x11/0x20 [ 202.732526] ? do_raw_spin_unlock+0xa7/0x2f0 [ 202.736916] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 202.741482] ? kasan_check_write+0x14/0x20 [ 202.745702] ? lock_sock_nested+0x9f/0x120 [ 202.749921] ? trace_hardirqs_on+0xd/0x10 [ 202.754055] ? __local_bh_enable_ip+0x161/0x230 [ 202.758718] tcp_sendmsg+0x2f/0x50 [ 202.762243] inet_sendmsg+0x1a1/0x690 [ 202.766028] ? ipip_gro_receive+0x100/0x100 [ 202.770345] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 202.775870] ? security_socket_sendmsg+0x94/0xc0 [ 202.780610] ? ipip_gro_receive+0x100/0x100 [ 202.784916] sock_sendmsg+0xd5/0x120 [ 202.788617] __sys_sendto+0x3d7/0x670 [ 202.792405] ? __ia32_sys_getpeername+0xb0/0xb0 [ 202.797059] ? vfs_write+0x2f3/0x560 [ 202.800761] ? wait_for_completion+0x8d0/0x8d0 [ 202.805326] ? lock_release+0xa30/0xa30 [ 202.809296] ? fsnotify_first_mark+0x350/0x350 [ 202.813869] ? __fsnotify_parent+0xcc/0x420 [ 202.818174] ? fsnotify+0x14e0/0x14e0 [ 202.821961] ? __sb_end_write+0xac/0xe0 [ 202.825921] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 202.831439] ? fput+0x130/0x1a0 [ 202.834702] ? ksys_write+0x1ae/0x260 [ 202.838488] ? __ia32_sys_read+0xb0/0xb0 [ 202.842537] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 202.848062] __x64_sys_sendto+0xe1/0x1a0 [ 202.852110] do_syscall_64+0x1b9/0x820 [ 202.855979] ? finish_task_switch+0x1d3/0x870 [ 202.860473] ? syscall_return_slowpath+0x5e0/0x5e0 [ 202.865404] ? syscall_return_slowpath+0x31d/0x5e0 [ 202.870317] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 202.875316] ? prepare_exit_to_usermode+0x291/0x3b0 [ 202.880326] ? perf_trace_sys_enter+0xb10/0xb10 [ 202.884979] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 202.889806] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 202.894981] RIP: 0033:0x455e29 [ 202.898151] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 202.917319] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 202.925014] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 202.932268] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 202.939520] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 202.946771] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 202.954111] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 0000000000000001 04:53:32 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xae80, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:32 executing program 5: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x8800, 0x0) ioctl$BLKPG(r0, 0x1269, &(0x7f0000000080)={0x5, 0x0, 0x1b, &(0x7f0000000040)="8d95e63f2afc0a151631524c09db23b66c2e899d62feea8829c025"}) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x200, 0x0) readv(r1, &(0x7f00000002c0)=[{&(0x7f0000000100)=""/143, 0x8f}, {&(0x7f00000001c0)=""/201, 0xc9}], 0x2) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000300)={0x0, 0x7}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000380)={r2, 0x8001}, &(0x7f00000003c0)=0x8) fadvise64(r0, 0x0, 0x316a, 0x7) ioctl$TIOCLINUX2(r0, 0x541c, &(0x7f0000000400)={0x2, 0x8, 0x1f, 0x100000000, 0x2732}) setsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000440)=@int=0x7, 0x4) readv(r1, &(0x7f0000000580)=[{&(0x7f0000000480)=""/216, 0xd8}], 0x1) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f00000005c0)={r3, 0xfffffffffffffff7, 0x5, 0x6, 0x8, 0x3}, 0x14) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0xc1205531, &(0x7f0000000600)={0x90, 0x7ff, 0x1, 0x6, [], [], [], 0x3, 0x8, 0x3, 0xec, "478c0e325d16728769b1b2f0b84666d1"}) ioctl$KVM_SET_REGS(r0, 0x4090ae82, &(0x7f0000000740)={[0x401, 0x800, 0x5, 0xdd35, 0xfff, 0x91, 0x6, 0x7, 0x0, 0x7fff, 0x3, 0x4, 0x9, 0xfff, 0x7fffffff, 0x1], 0xf000, 0x10000}) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000800)={0x9, 0x0, 0x0, 0x6, 0x7ff}, 0x14) syz_kvm_setup_cpu$x86(r0, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000008c0)=[@text64={0x40, &(0x7f0000000840)="0faba6b900000066baf80cb868168b81ef66bafc0c66b8c37a66ef0f013166410f38209f190f079b8bd9c441f8521c2a0f01cac744240000000000c744240200800000c7442406000000000f011c240f20c035200000000f22c00f30", 0x5c}], 0x1, 0x42, &(0x7f0000000900), 0x0) ioctl$KVM_IRQ_LINE(r0, 0x4008ae61, &(0x7f0000000940)={0x7fff, 0x437f}) ioctl$KVM_SET_GUEST_DEBUG(r0, 0x4048ae9b, &(0x7f0000000980)={0x2, 0x0, [0x7ff, 0x40, 0x2, 0x0, 0x2, 0x4, 0xb4, 0xffd4]}) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000a00)={r3, 0x1, 0x30}, 0xc) getsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000a40)={r2, 0x8, 0xd217, 0xfff}, &(0x7f0000000a80)=0x10) msync(&(0x7f0000ff2000/0x2000)=nil, 0x2000, 0x4) ioctl$FIDEDUPERANGE(r1, 0xc0189436, &(0x7f0000000ac0)={0x8, 0x2, 0x9, 0x0, 0x0, [{r0, 0x0, 0x8}, {r1, 0x0, 0x75}, {r0, 0x0, 0x54}, {r0, 0x0, 0x35}, {r1}, {r1, 0x0, 0x4f0}, {r0, 0x0, 0x8}, {r0, 0x0, 0x7}, {r1, 0x0, 0x6}]}) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000c00)=r0, 0x4) munlock(&(0x7f0000ffd000/0x2000)=nil, 0x2000) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000c40)=0x4, 0x4) ioctl$KDENABIO(r1, 0x4b36) setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, &(0x7f0000000c80)={0xfffffffffffffffc, {{0xa, 0x4e24, 0x8, @empty, 0x5e}}}, 0x88) ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f0000000d40)={{0x5000, 0xd50a5f149b0e762, 0xf, 0x0, 0xffffffff, 0x3f, 0x4, 0x101, 0x8, 0x2, 0xfffffffffffffffc, 0x9}, {0xf000, 0xf000, 0xf, 0x20, 0x4, 0x6d98, 0x3a, 0x6, 0x6, 0x401, 0x9, 0x4}, {0x2004, 0x6000, 0x10, 0x0, 0xffffffff, 0x3, 0x2b7c, 0x7fff, 0x8, 0x0, 0x3, 0x7}, {0x10000, 0x2, 0x0, 0x3ff, 0x5, 0x1000, 0x7f000000000000, 0x0, 0x0, 0x0, 0x0, 0x1ff}, {0x0, 0x1000, 0xd, 0xfff, 0x1, 0x2, 0x5, 0x1, 0x9, 0x1, 0x26, 0xff}, {0x4, 0x6000, 0x8, 0x3, 0xfffffffffffffffa, 0x4, 0x7fff, 0x6, 0x80000000, 0x3, 0x1f, 0x7}, {0x3000, 0x1, 0xe, 0x3, 0x2, 0x400, 0x9, 0x2, 0x2, 0x401, 0x7f, 0x8}, {0xf000, 0x4, 0x0, 0x915e, 0xc0, 0x200, 0x8, 0x5f04, 0x8, 0x3, 0x5, 0x7}, {0x17001, 0x4}, {0x2000, 0x1000}, 0x2, 0x0, 0x10000, 0x400529, 0x6, 0x400, 0x0, [0x0, 0xfffffffffffffeff, 0x5, 0x2]}) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000f80)={{{@in6=@mcast2, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@rand_addr}}, &(0x7f0000001080)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x10, 0x9, &(0x7f0000000e80)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6d, 0x0, 0x0, 0x0, 0x7}, [@map={0x18, 0xd, 0x1, 0x0, r1}, @alu={0x7, 0x7f, 0x2, 0x0, 0x0, 0xffffffff, 0xfffffffffffffffc}, @call={0x85, 0x0, 0x0, 0x20}], {0x95}}, &(0x7f0000000f00)='GPL\x00', 0x19695c1, 0x35, &(0x7f0000000f40)=""/53, 0x41f00, 0x0, [], r4, 0x4}, 0x48) readv(r1, &(0x7f0000001280)=[{&(0x7f0000001140)=""/25, 0x19}, {&(0x7f0000001180)=""/248, 0xf8}], 0x2) 04:53:32 executing program 7 (fault-call:7 fault-nth:2): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:32 executing program 2: r0 = socket(0xe, 0x6, 0x0) sendto(r0, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0xfffffffffffffe9b, 0x0, 0x0, 0xfffffffffffffdd8) recvmmsg(r0, &(0x7f00000075c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000000)=""/100, 0x64}, {&(0x7f0000000280)=""/227, 0xe3}, {&(0x7f0000000480)=""/122, 0x7a}, {&(0x7f0000001580)=""/4096, 0x1000}], 0x4, &(0x7f0000000080)=""/49, 0x31}}, {{&(0x7f0000000d40)=@hci, 0x80, &(0x7f0000001240), 0x0, &(0x7f00000012c0)=""/41, 0x29}}, {{&(0x7f0000001300)=@alg, 0x80, &(0x7f0000001480), 0x0, &(0x7f0000002580)=""/84, 0x54}}, {{&(0x7f0000002600)=@in={0x0, 0x0, @remote}, 0x80, &(0x7f0000005d40), 0x0, &(0x7f0000005dc0)=""/205, 0xcd}}], 0x4, 0x0, &(0x7f0000007800)={0x77359400}) 04:53:32 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10003) 04:53:32 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x7800, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 203.216261] FAULT_INJECTION: forcing a failure. [ 203.216261] name failslab, interval 1, probability 0, space 0, times 0 [ 203.227584] CPU: 1 PID: 13666 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 203.235994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 203.245345] Call Trace: [ 203.247942] dump_stack+0x1c9/0x2b4 [ 203.251583] ? dump_stack_print_info.cold.2+0x52/0x52 [ 203.256783] ? kernel_text_address+0x79/0xf0 [ 203.261183] should_fail.cold.4+0xa/0x11 [ 203.265240] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 203.270333] ? fib_insert_alias+0x1200/0x1200 [ 203.274813] ? lock_acquire+0x1e4/0x540 [ 203.278771] ? rt_add_uncached_list+0x1e1/0x280 [ 203.283427] ? __sys_sendto+0x3d7/0x670 [ 203.287386] ? trace_hardirqs_on+0x10/0x10 [ 203.291618] ? kasan_check_read+0x11/0x20 [ 203.295756] ? __debug_object_init+0x581/0x12e0 [ 203.300425] ? lock_downgrade+0x8f0/0x8f0 [ 203.304570] ? lock_downgrade+0x8f0/0x8f0 [ 203.308706] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 203.314240] ? find_exception+0x517/0xc50 [ 203.318372] ? __ip_dev_find+0x1f8/0x670 [ 203.322430] __should_failslab+0x124/0x180 [ 203.326663] should_failslab+0x9/0x14 [ 203.330449] kmem_cache_alloc+0x47/0x760 [ 203.334505] ? trace_hardirqs_on+0x10/0x10 [ 203.338727] dst_alloc+0xbb/0x1d0 [ 203.342168] rt_dst_alloc+0x102/0x520 [ 203.345967] ? fnhe_flush_routes+0x480/0x480 [ 203.350359] ? do_raw_spin_unlock+0xa7/0x2f0 [ 203.354755] ? lock_acquire+0x1e4/0x540 [ 203.358713] ? debug_object_active_state+0x2f5/0x4d0 [ 203.363804] ip_route_output_key_hash_rcu+0xa5b/0x3500 [ 203.369078] ? kasan_check_read+0x11/0x20 [ 203.373211] ? ip_route_input_noref+0x270/0x270 [ 203.377864] ? trace_hardirqs_on+0xd/0x10 [ 203.382003] ? debug_object_active_state+0x2f5/0x4d0 [ 203.387105] ? kasan_check_read+0x11/0x20 [ 203.391237] ? lock_acquire+0x1e4/0x540 [ 203.395204] ? ip_route_output_key_hash+0x1ab/0x3b0 [ 203.400205] ? lock_release+0xa30/0xa30 [ 203.404169] ? kernel_text_address+0x79/0xf0 [ 203.408562] ip_route_output_key_hash+0x242/0x3b0 [ 203.413389] ? ip_route_output_key_hash_rcu+0x3500/0x3500 [ 203.418921] ? ip_route_output_key_hash+0x29b/0x3b0 [ 203.423921] ? ip_route_output_key_hash_rcu+0x3500/0x3500 [ 203.429457] ip_route_output_flow+0x28/0xc0 [ 203.433767] tcp_v4_connect+0x835/0x1db0 [ 203.437817] ? tcp_v4_parse_md5_keys+0x340/0x340 [ 203.442557] ? lock_acquire+0x1e4/0x540 [ 203.446518] __inet_stream_connect+0x964/0x1150 [ 203.451170] ? lock_release+0xa30/0xa30 [ 203.455132] ? inet_dgram_connect+0x2e0/0x2e0 [ 203.459624] ? kasan_unpoison_shadow+0x35/0x50 [ 203.464193] ? kasan_kmalloc+0xc4/0xe0 [ 203.468069] ? kmem_cache_alloc_trace+0x318/0x780 [ 203.472899] tcp_sendmsg_locked+0x2882/0x3f10 [ 203.477386] ? lock_acquire+0x1e4/0x540 [ 203.481356] ? lock_downgrade+0x8f0/0x8f0 [ 203.485490] ? lock_acquire+0x1e4/0x540 [ 203.489464] ? tcp_sendpage+0x60/0x60 [ 203.493261] ? __fget+0x4d5/0x740 [ 203.496703] ? _parse_integer+0x190/0x190 [ 203.500838] ? lock_acquire+0x1e4/0x540 [ 203.504798] ? tcp_sendmsg+0x21/0x50 [ 203.508503] ? lock_release+0xa30/0xa30 [ 203.512465] ? kasan_check_read+0x11/0x20 [ 203.516612] ? do_raw_spin_unlock+0xa7/0x2f0 [ 203.521015] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 203.525587] ? kasan_check_write+0x14/0x20 [ 203.529808] ? lock_sock_nested+0x9f/0x120 [ 203.534032] ? trace_hardirqs_on+0xd/0x10 [ 203.538173] ? __local_bh_enable_ip+0x161/0x230 [ 203.542835] tcp_sendmsg+0x2f/0x50 [ 203.546370] inet_sendmsg+0x1a1/0x690 [ 203.550153] ? ipip_gro_receive+0x100/0x100 [ 203.554463] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 203.559989] ? security_socket_sendmsg+0x94/0xc0 [ 203.564732] ? ipip_gro_receive+0x100/0x100 [ 203.569046] sock_sendmsg+0xd5/0x120 [ 203.572746] __sys_sendto+0x3d7/0x670 [ 203.576534] ? __ia32_sys_getpeername+0xb0/0xb0 [ 203.581200] ? vfs_write+0x2f3/0x560 [ 203.584903] ? wait_for_completion+0x8d0/0x8d0 [ 203.589473] ? lock_release+0xa30/0xa30 [ 203.593436] ? fsnotify_first_mark+0x350/0x350 [ 203.598024] ? __fsnotify_parent+0xcc/0x420 [ 203.602332] ? fsnotify+0x14e0/0x14e0 [ 203.606122] ? __sb_end_write+0xac/0xe0 [ 203.610084] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 203.615609] ? fput+0x130/0x1a0 [ 203.618875] ? ksys_write+0x1ae/0x260 [ 203.622662] ? __ia32_sys_read+0xb0/0xb0 [ 203.626709] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 203.632235] __x64_sys_sendto+0xe1/0x1a0 [ 203.636289] do_syscall_64+0x1b9/0x820 [ 203.640161] ? finish_task_switch+0x1d3/0x870 [ 203.644644] ? syscall_return_slowpath+0x5e0/0x5e0 [ 203.649572] ? syscall_return_slowpath+0x31d/0x5e0 [ 203.654495] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 203.659497] ? prepare_exit_to_usermode+0x291/0x3b0 [ 203.664587] ? perf_trace_sys_enter+0xb10/0xb10 [ 203.669242] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 203.674072] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 203.679245] RIP: 0033:0x455e29 [ 203.682418] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 203.701602] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 203.709298] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 04:53:33 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0)={0xaa}) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000340)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x0, 0x0) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f000021f000/0x1000)=nil, 0x1000}, 0x2}) sigaltstack(&(0x7f0000751000/0x4000)=nil, &(0x7f0000000040)) read(r0, &(0x7f0000465f8e)=""/114, 0x47) close(r0) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 04:53:33 executing program 7 (fault-call:7 fault-nth:3): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:33 executing program 2: r0 = socket$inet6(0xa, 0x1000000000003, 0x100000003) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000000)="66b8b6000f00d0c4c21d9ca90e000000d9e866b85b000f00d0b82bff00000f23c80f21f8350800d0000f23f8c4e11de943000f01ca66baf80cb8f0c5018fef66bafc0cec66b840000f00d8b80a0000000f23d00f21f835000000090f23f8", 0x5e}], 0x1, 0x0, &(0x7f0000000040), 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f00000001c0)={0x2, 0x0, [0x4b564d03, 0x101]}) [ 203.716563] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 203.724078] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 203.731332] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 203.738586] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 0000000000000002 04:53:33 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10002) 04:53:33 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x500000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 204.037362] FAULT_INJECTION: forcing a failure. [ 204.037362] name failslab, interval 1, probability 0, space 0, times 0 [ 204.048657] CPU: 1 PID: 13695 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 204.057063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 204.066432] Call Trace: [ 204.069022] dump_stack+0x1c9/0x2b4 [ 204.072648] ? dump_stack_print_info.cold.2+0x52/0x52 [ 204.077866] should_fail.cold.4+0xa/0x11 [ 204.081940] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 204.087033] ? kasan_check_read+0x11/0x20 [ 204.091168] ? rcu_is_watching+0x8c/0x150 [ 204.095303] ? trace_hardirqs_on+0x10/0x10 [ 204.099525] ? is_bpf_text_address+0xd7/0x170 [ 204.104012] ? kernel_text_address+0x79/0xf0 [ 204.108406] ? __kernel_text_address+0xd/0x40 [ 204.112900] ? unwind_get_return_address+0x61/0xa0 [ 204.117837] ? lock_acquire+0x1e4/0x540 [ 204.121806] ? fs_reclaim_acquire+0x20/0x20 [ 204.126114] ? lock_downgrade+0x8f0/0x8f0 [ 204.130249] ? check_same_owner+0x340/0x340 [ 204.134558] ? rcu_note_context_switch+0x730/0x730 [ 204.139478] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 204.144484] __should_failslab+0x124/0x180 [ 204.148709] should_failslab+0x9/0x14 [ 204.152496] kmem_cache_alloc_node+0x272/0x780 [ 204.157065] ? __sk_dst_check+0x1ef/0x410 [ 204.161200] __alloc_skb+0x119/0x790 [ 204.164899] ? skb_scrub_packet+0x490/0x490 [ 204.169233] ? ip_mtu_from_fib_result+0x600/0x600 [ 204.174066] ? inet_sk_rebuild_header+0xa4/0x1d20 [ 204.178897] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 204.184423] ? tcp_chrono_stop+0x25f/0x590 [ 204.188644] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 204.194166] ? tcp_chrono_start+0x1e0/0x1e0 [ 204.198488] sk_stream_alloc_skb+0x141/0x970 [ 204.202897] ? tcp_init_transfer+0x470/0x470 [ 204.207298] ? do_raw_spin_lock+0xc1/0x200 [ 204.211515] ? tcp_close+0x12d0/0x12d0 [ 204.215398] tcp_connect+0x128a/0x45d0 [ 204.219275] ? tcp_push_one+0x110/0x110 [ 204.223234] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 204.227802] ? secure_tcp_seq+0xa4/0x180 [ 204.231859] ? lock_downgrade+0x8f0/0x8f0 [ 204.236005] ? pvclock_read_flags+0x160/0x160 [ 204.240487] ? inet_sk_state_store+0x110/0x5b0 [ 204.245055] ? kvm_clock_read+0x25/0x30 [ 204.249018] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 204.254033] ? ktime_get_with_offset+0x32e/0x4b0 [ 204.258776] ? ktime_get+0x440/0x440 [ 204.262476] ? ip_route_output_key_hash+0x29b/0x3b0 [ 204.267477] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 204.273000] ? tcp_fastopen_cookie_check+0x340/0x340 [ 204.278094] ? secure_tcp_ts_off+0xdf/0x1a0 [ 204.282404] ? secure_ipv6_port_ephemeral+0x2f0/0x2f0 [ 204.287583] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 204.293106] ? sk_setup_caps+0x1f8/0x680 [ 204.297157] tcp_v4_connect+0x198f/0x1db0 [ 204.301304] ? tcp_v4_parse_md5_keys+0x340/0x340 [ 204.306047] ? lock_acquire+0x1e4/0x540 [ 204.310019] __inet_stream_connect+0x964/0x1150 [ 204.314687] ? lock_release+0xa30/0xa30 [ 204.318648] ? inet_dgram_connect+0x2e0/0x2e0 [ 204.323131] ? kasan_unpoison_shadow+0x35/0x50 [ 204.327697] ? kasan_kmalloc+0xc4/0xe0 [ 204.331572] ? kmem_cache_alloc_trace+0x318/0x780 [ 204.336402] tcp_sendmsg_locked+0x2882/0x3f10 [ 204.340903] ? lock_acquire+0x1e4/0x540 [ 204.344862] ? lock_downgrade+0x8f0/0x8f0 [ 204.349009] ? lock_acquire+0x1e4/0x540 [ 204.352980] ? tcp_sendpage+0x60/0x60 [ 204.356781] ? __fget+0x4d5/0x740 [ 204.360223] ? _parse_integer+0x190/0x190 [ 204.364357] ? lock_acquire+0x1e4/0x540 [ 204.368314] ? tcp_sendmsg+0x21/0x50 [ 204.372018] ? lock_release+0xa30/0xa30 [ 204.375980] ? kasan_check_read+0x11/0x20 [ 204.380125] ? do_raw_spin_unlock+0xa7/0x2f0 [ 204.384519] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 204.389090] ? kasan_check_write+0x14/0x20 [ 204.393310] ? lock_sock_nested+0x9f/0x120 [ 204.397544] ? trace_hardirqs_on+0xd/0x10 [ 204.401680] ? __local_bh_enable_ip+0x161/0x230 [ 204.406338] tcp_sendmsg+0x2f/0x50 [ 204.409864] inet_sendmsg+0x1a1/0x690 [ 204.413651] ? ipip_gro_receive+0x100/0x100 [ 204.417970] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 204.423582] ? security_socket_sendmsg+0x94/0xc0 [ 204.428323] ? ipip_gro_receive+0x100/0x100 [ 204.432632] sock_sendmsg+0xd5/0x120 [ 204.436332] __sys_sendto+0x3d7/0x670 [ 204.440117] ? __ia32_sys_getpeername+0xb0/0xb0 [ 204.444781] ? vfs_write+0x2f3/0x560 [ 204.448480] ? wait_for_completion+0x8d0/0x8d0 [ 204.453045] ? lock_release+0xa30/0xa30 [ 204.457007] ? fsnotify_first_mark+0x350/0x350 [ 204.461574] ? __fsnotify_parent+0xcc/0x420 [ 204.465880] ? fsnotify+0x14e0/0x14e0 [ 204.469691] ? __sb_end_write+0xac/0xe0 [ 204.473650] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 204.479175] ? fput+0x130/0x1a0 [ 204.482455] ? ksys_write+0x1ae/0x260 [ 204.486242] ? __ia32_sys_read+0xb0/0xb0 [ 204.490287] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 204.495813] __x64_sys_sendto+0xe1/0x1a0 [ 204.499873] do_syscall_64+0x1b9/0x820 [ 204.503752] ? finish_task_switch+0x1d3/0x870 [ 204.508236] ? syscall_return_slowpath+0x5e0/0x5e0 [ 204.513151] ? syscall_return_slowpath+0x31d/0x5e0 [ 204.518067] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 204.523079] ? prepare_exit_to_usermode+0x291/0x3b0 [ 204.528082] ? perf_trace_sys_enter+0xb10/0xb10 [ 204.532748] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 204.537579] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 204.542854] RIP: 0033:0x455e29 [ 204.546026] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 204.565281] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 204.572974] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 204.580237] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 04:53:34 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x200000000003e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffffffffffd, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x8) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x1, 0x12, 0x6, 0x7f, 0x1}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000000), &(0x7f0000000080)}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r0}, 0x10) [ 204.587501] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 204.594900] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 204.602181] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 0000000000000003 04:53:34 executing program 7 (fault-call:7 fault-nth:4): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:34 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000100)=0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x80001, 0x50) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000080)={0x8}) syz_open_pts(r1, 0x0) ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000000)={0x3, 0x0, 0x0, 0x8000001, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}) ioctl$TCSETAW(r2, 0x5407, &(0x7f0000000140)={0xafd7, 0x4, 0x68fb, 0x6, 0x8000, 0x3, 0x4, 0x200, 0x7, 0x2}) [ 204.838962] FAULT_INJECTION: forcing a failure. [ 204.838962] name failslab, interval 1, probability 0, space 0, times 0 [ 204.850442] CPU: 1 PID: 13724 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 204.858899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 204.868274] Call Trace: [ 204.870879] dump_stack+0x1c9/0x2b4 [ 204.874541] ? dump_stack_print_info.cold.2+0x52/0x52 [ 204.879775] should_fail.cold.4+0xa/0x11 [ 204.883884] ? __kernel_text_address+0xd/0x40 [ 204.888391] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 204.893505] ? __save_stack_trace+0x8d/0xf0 [ 204.897843] ? save_stack+0xa9/0xd0 [ 204.901486] ? save_stack+0x43/0xd0 [ 204.905121] ? kasan_kmalloc+0xc4/0xe0 [ 204.909015] ? kasan_slab_alloc+0x12/0x20 [ 204.913173] ? kmem_cache_alloc_node+0x144/0x780 [ 204.917937] ? __alloc_skb+0x119/0x790 [ 204.921924] ? sk_stream_alloc_skb+0x141/0x970 [ 204.926506] ? tcp_connect+0x128a/0x45d0 [ 204.930560] ? tcp_v4_connect+0x198f/0x1db0 [ 204.934889] ? __inet_stream_connect+0x964/0x1150 [ 204.939724] ? tcp_sendmsg_locked+0x2882/0x3f10 [ 204.944381] ? tcp_sendmsg+0x2f/0x50 [ 204.948080] ? inet_sendmsg+0x1a1/0x690 [ 204.952043] ? sock_sendmsg+0xd5/0x120 [ 204.955919] ? __sys_sendto+0x3d7/0x670 [ 204.959888] ? lock_acquire+0x1e4/0x540 [ 204.963872] ? fs_reclaim_acquire+0x20/0x20 [ 204.968194] ? lock_downgrade+0x8f0/0x8f0 [ 204.972346] ? check_same_owner+0x340/0x340 [ 204.976669] ? lock_downgrade+0x8f0/0x8f0 [ 204.980806] ? rcu_note_context_switch+0x730/0x730 [ 204.985722] __should_failslab+0x124/0x180 [ 204.989956] should_failslab+0x9/0x14 [ 204.993754] kmem_cache_alloc_node_trace+0x26f/0x770 [ 204.998862] ? kasan_kmalloc+0xc4/0xe0 [ 205.002756] __kmalloc_node_track_caller+0x33/0x70 [ 205.007698] __kmalloc_reserve.isra.41+0x3a/0xe0 [ 205.012497] __alloc_skb+0x155/0x790 [ 205.016240] ? skb_scrub_packet+0x490/0x490 [ 205.020557] ? ip_mtu_from_fib_result+0x600/0x600 [ 205.025406] ? inet_sk_rebuild_header+0xa4/0x1d20 [ 205.030254] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 205.035793] ? tcp_chrono_stop+0x25f/0x590 [ 205.040034] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 205.045580] ? tcp_chrono_start+0x1e0/0x1e0 [ 205.049909] sk_stream_alloc_skb+0x141/0x970 [ 205.054321] ? tcp_init_transfer+0x470/0x470 [ 205.058736] ? do_raw_spin_lock+0xc1/0x200 [ 205.062970] ? tcp_close+0x12d0/0x12d0 [ 205.066873] tcp_connect+0x128a/0x45d0 [ 205.070767] ? tcp_push_one+0x110/0x110 [ 205.074744] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 205.079331] ? secure_tcp_seq+0xa4/0x180 [ 205.083397] ? lock_downgrade+0x8f0/0x8f0 [ 205.087555] ? pvclock_read_flags+0x160/0x160 [ 205.092050] ? inet_sk_state_store+0x110/0x5b0 [ 205.096641] ? kvm_clock_read+0x25/0x30 [ 205.100618] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 205.105636] ? ktime_get_with_offset+0x32e/0x4b0 [ 205.110399] ? ktime_get+0x440/0x440 [ 205.114118] ? ip_route_output_key_hash+0x29b/0x3b0 [ 205.119139] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 205.124680] ? tcp_fastopen_cookie_check+0x340/0x340 [ 205.129790] ? secure_tcp_ts_off+0xdf/0x1a0 [ 205.134117] ? secure_ipv6_port_ephemeral+0x2f0/0x2f0 [ 205.139316] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 205.144865] ? sk_setup_caps+0x1f8/0x680 [ 205.148954] tcp_v4_connect+0x198f/0x1db0 [ 205.153113] ? tcp_v4_parse_md5_keys+0x340/0x340 [ 205.157886] ? lock_acquire+0x1e4/0x540 [ 205.161874] __inet_stream_connect+0x964/0x1150 [ 205.166549] ? lock_release+0xa30/0xa30 [ 205.170532] ? inet_dgram_connect+0x2e0/0x2e0 [ 205.175035] ? kasan_unpoison_shadow+0x35/0x50 [ 205.179622] ? kasan_kmalloc+0xc4/0xe0 [ 205.183522] ? kmem_cache_alloc_trace+0x318/0x780 04:53:35 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0) unshare(0x6a000400) ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x8008af00, &(0x7f00000006c0)) r2 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0xbe8, 0x2) ioctl$PPPIOCGCHAN(r2, 0x80047437, &(0x7f0000000040)) 04:53:35 executing program 1: fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffff9c) r0 = openat$cgroup(0xffffffffffffff9c, &(0x7f0000000040)='syz1\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={r0, 0xfffffffffffffffe, 0x0, 0x10000000000000, &(0x7f0000000000), 0xdcc5dc8394986ab4}, 0xfffffffffffffe97) 04:53:35 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x1ff5f) 04:53:35 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8d000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:35 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x4004ae99, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:35 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = syz_open_dev$binder(&(0x7f00000000c0)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r2 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r2, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000440)={0x44, 0x0, &(0x7f0000000300)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x8, &(0x7f0000000200)=[@flat={0x73622a85}], &(0x7f0000000240)=[0x0]}}], 0x0, 0x0, &(0x7f00000003c0)}) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer2\x00', 0x800000000000100, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={0xffffffff}, 0x13f, 0x1}}, 0x20) write$RDMA_USER_CM_CMD_CONNECT(r3, &(0x7f0000000480)={0x6, 0x118, 0xfa00, {{0x23, 0x2, "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", 0x13, 0x40, 0x1c0000000, 0x1, 0x10000, 0x9, 0x5, 0x1}, r4}}, 0x120) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)=[@release={0x40046306, 0x1}, @free_buffer={0x40086303}], 0x0, 0x0, &(0x7f0000000080)}) 04:53:35 executing program 3: getrandom(&(0x7f0000000000)=""/186, 0xba, 0x2) syz_mount_image$hfsplus(&(0x7f00000000c0)='hfsplus\x00', &(0x7f0000000100)='./file0\x00', 0x76a86fe8, 0x4, &(0x7f0000000340)=[{&(0x7f0000000140)="85c07b7ffccd329cba1beb4ee1b0c2090e29e8c57d3165bd7ac787b9b28fcf075478c76eee35755ba176d54a32a8533d112df65f0bd79d40a25e07e9c7ed0150239c5adabd58d1a9b220ea3d0347e36209333fa9c1a8d2eb13c9b0731f074ffe2c8177d2894c6007", 0x68, 0x7f}, {&(0x7f00000001c0)="4386d2779d29d83505600b8dfbd511f77d5a63a8b2a49f22fe2d328ad373049689e4ff44a73cae14c2834c8bef9e5fe7d130dd0e2a5cc24fc988dfedb8ba028741360d2c7b9debb73f463536a15b017ae3106d89aec607f8c25625ae54fd02a0bde0e4639e325dbe42bf00ed60898d1daa28064a5a86347a78ad03c636391796044aff37d2d3d94385475fc8be3fe3abe9d1cf89564a3e86143003fc1459fc4228f7a1db884db362a923e6", 0xab, 0x711936f1}, {&(0x7f0000000280)="892e5c44aa296969e1c9d09864083e653d524b89906d572cce5edd0876918dfb72e20e14bd2d79d7e957", 0x2a, 0x44}, {&(0x7f00000002c0)="11d4affe90f3bf51b37b743d1e1e3a4d1c8cc98c0c4a036a2e796e07da33ee53cc594436240e2481a1923152b1032eda62360ebd2a92b6befcfd84f1bda25e6c5d31bad47681684cf0e9cbdaeed55f94ddca29ab787bc033f7a2ce7ba45e809a341894b5e6c414f968", 0x69, 0x101}], 0x10000c, &(0x7f00000003c0)={[{@barrier='barrier', 0x2c}]}) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000400)='/dev/vga_arbiter\x00', 0x80080, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000440)='/dev/ppp\x00', 0x0, 0x0) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000480)={0x3, r1}) setxattr(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)=@random={'trusted.', '/dev/ppp\x00'}, &(0x7f0000000540)='hfsplus\x00', 0x8, 0x2) readv(r0, &(0x7f0000002a80)=[{&(0x7f0000000580)=""/106, 0x6a}, {&(0x7f0000000600)=""/71, 0x47}, {&(0x7f0000000680)=""/188, 0xbc}, {&(0x7f0000000740)=""/4096, 0x1000}, {&(0x7f0000001740)=""/93, 0x5d}, {&(0x7f00000017c0)=""/82, 0x52}, {&(0x7f0000001840)=""/227, 0xe3}, {&(0x7f0000001940)=""/4096, 0x1000}, {&(0x7f0000002940)=""/82, 0x52}, {&(0x7f00000029c0)=""/139, 0x8b}], 0xa) fstat(0xffffffffffffff9c, &(0x7f0000002b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r1, &(0x7f0000002c00)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r1, &(0x7f0000002c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000002d00)=0x0, &(0x7f0000002d40), &(0x7f0000002d80)) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000003540)=@filter={'filter\x00', 0xe, 0x5, 0x748, [0x0, 0x20002dc0, 0x20003058, 0x20003208], 0x0, &(0x7f0000002b40), &(0x7f0000002dc0)=[{0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x13, 0x3, 0x60f7, 'veth0_to_team\x00', 'bcsf0\x00', 'syzkaller0\x00', 'eql\x00', @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [0xff, 0xff, 0x0, 0x0, 0xff, 0xff], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [0xff, 0xff, 0xff, 0xff, 0xff], 0x70, 0xd0, 0x120}, [@common=@STANDARD={'\x00', 0x8, {0xffffffffffffffff}}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x63a5}}}]}, @common=@LED={'LED\x00', 0x28, {{'syz1\x00', 0x1, 0xfc, 0x9}}}}, {{{0x5, 0x18, 0xf5, 'veth0\x00', 'yam0\x00', 'veth0_to_bridge\x00', 'veth1_to_bridge\x00', @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x16}, [0xff, 0xff, 0xff, 0xff, 0x0, 0xff], @empty, [0xff, 0x0, 0x0, 0xff, 0xff], 0xc0, 0xf8, 0x148, [@ipvs={'ipvs\x00', 0x28, {{@ipv4=@local={0xac, 0x14, 0x14, 0xaa}, [0x0, 0x0, 0xff000000, 0xff], 0x4e20, 0x62, 0x1, 0x4e22, 0x1, 0x10}}}]}, [@common=@dnat={'dnat\x00', 0x10, {{@random="92bc22f0e0dd", 0x10}}}]}, @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x9c1, 'syz1\x00'}}}}]}, {0x0, '\x00', 0x2, 0xffffffffffffffff, 0x1, [{{{0x19, 0x2, 0x9aff, 'ip6tnl0\x00', 'bridge0\x00', 'erspan0\x00', 'ifb0\x00', @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, [0xff, 0x0, 0x0, 0xff, 0xff, 0xff], @empty, [0xff, 0xff, 0x0, 0x0, 0xff, 0xff], 0xb0, 0x130, 0x180, [@owner={'owner\x00', 0x18, {{r2, r4, r5, r6, 0x4, 0x2}}}]}, [@common=@log={'log\x00', 0x28, {{0x10001, "1312e0ee5535fef382c1156b354eba3387d0dbb71371545a755b15c696f4", 0xf}}}, @common=@STANDARD={'\x00', 0x8, {0xffffffffffffffff}}]}, @common=@LED={'LED\x00', 0x28, {{'syz0\x00', 0x0, 0x7, 0x17d}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffc, 0x2, [{{{0x9, 0x40, 0x897f, 'ip_vti0\x00', 'irlan0\x00', 'vcan0\x00', 'bcsh0\x00', @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [0xff, 0xff, 0xff], @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [0xff, 0x0, 0xff, 0x0, 0xff, 0xff], 0x70, 0xf8, 0x170}, [@common=@LED={'LED\x00', 0x28, {{'syz1\x00', 0x1, 0x2, 0x82}}}, @common=@mark={'mark\x00', 0x10, {{0xfffffff0, 0xfffffffffffffffc}}}]}, @common=@NFLOG={'NFLOG\x00', 0x50, {{0x556, 0x8, 0xcec, 0x1, 0x0, "b19dcc5ceda2616ef4aa041c9716cdaba7ecf4722300d8aa9f7aaa77037b3d39cf101c44b4a826ae9fdb009fa7c517beb268d38eaefb1af47946b4e515678ae0"}}}}, {{{0x11, 0x40, 0x22fb, 'veth0_to_team\x00', 'bond_slave_0\x00', 'bridge0\x00', 'bridge_slave_0\x00', @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x19}, [0xff, 0xff, 0xff, 0xff, 0x0, 0xff], @random="f830c5f71a79", [0xff, 0xff, 0x0, 0xff, 0xff, 0xff], 0xe0, 0x130, 0x160, [@quota={'quota\x00', 0x18, {{0x0, 0x0, 0x6, 0x4}}}, @connlabel={'connlabel\x00', 0x8, {{0x0, 0x2}}}]}, [@common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x4, 'syz1\x00', 0x81}}}]}, @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x8}}}}]}]}, 0x7c0) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f00000035c0)=0x7, 0x4) setsockopt$inet_buf(r0, 0x0, 0x2a, &(0x7f0000003600)="e7b6da6bb2e64076e62299b861f10875163b206e2e98782b4eaaebc48e80ee1ecd2e45f602696116f6091db56ae09288eb7bce4efaecab666f10be8097d77cdfe790b8fff28e7012759af8a11fa2fc1d7792e69a20759c95ec67af0f341abf87b199f061271be3d0c69975f0c9198d96fe8080f5e7f3ac6a682deb7fe3a43b5cc4ffbf063c79f8b04907c88ad41a8bfd16819cb8f85d0272a5abec18712cb896d3d28c56a6ca8d10443db6c237fa87e547036382b420dcd4c205", 0xba) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0xc028ae92, &(0x7f00000036c0)={0x7, 0x4}) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000003700)={@in6={{0xa, 0x4e22, 0xa934, @local={0xfe, 0x80, [], 0xaa}, 0x380000}}, 0x97, 0x8, 0x8, "a76eb8b54eb883b2c687e5de05b6d0aa8dcf9d0fd39a75359e12a05b63986ab3b462cd0ab5e7bbad05dabfe89056e4d3d236ae77a17f5269e314a2a250748a767d2fc696bb5a07a555a135b753c739e5"}, 0xd8) mknodat(r0, &(0x7f0000003800)='./file0\x00', 0xf000, 0x522) r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000003840)='/dev/ppp\x00', 0x20000, 0x0) ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f0000003880)="bd20f6a643f57dbf32b07c6e856962ec1a66409dfb2a6deb6fe9a3373e07c4974c610a64dac0a5e33f0f6efb6f9b188316a5f190c8509d0dc48c5338331a3fe9c40bbdd2b2146392cd4e14017fe881e2ffcd98bbf6833bdafc28326600bf4dbc132b35bbb2886bce1050e4abcc9be6cde22e7a7cb2e4a6e610b5ac010ed144b3d5ed1a558aa93bca154dfd38a2e542db3c4e45e17b526f6a20b918ab44134522d866b30cdfd469e0ac8eb9df1af50a905576986aeb49ca1c814e45b70e9e8f240a09fc2701af43bb3d22f9db0e57a7d0fc6076667d06de8836e2d37bc3cb4cf4d401aed4223f3881bbd5ac8b0f649a9c00ba3554c00c6c6a10eb82966070f6f8") ioctl$EVIOCSABS20(r7, 0x401845e0, &(0x7f0000003980)={0x3, 0x40, 0x100000000, 0x8, 0x25}) ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f00000039c0)) ioctl$EVIOCREVOKE(r7, 0x40044591, &(0x7f0000003a00)) accept4$packet(r7, &(0x7f0000003a40)={0x0, 0x0, 0x0}, &(0x7f0000003a80)=0x14, 0x800) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000003ac0)={'sit0\x00', r8}) write$P9_RGETATTR(r0, &(0x7f0000003b00)={0xa0, 0x19, 0x2, {0x20, {0x40, 0x3, 0x7}, 0x4, r2, r6, 0x7fff, 0x4, 0x3ff, 0x7, 0x80000001, 0x1, 0x0, 0x3f, 0x1, 0x1, 0x1, 0xb17c, 0x2, 0x3, 0x7}}, 0xa0) preadv(r7, &(0x7f0000003d00)=[{&(0x7f0000003bc0)=""/122, 0x7a}, {&(0x7f0000003c40)=""/54, 0x36}, {&(0x7f0000003c80)=""/23, 0x17}, {&(0x7f0000003cc0)=""/25, 0x19}], 0x4, 0x0) syz_fuse_mount(&(0x7f0000003d40)='./file0\x00', 0x2000, r4, r3, 0x3ff, 0x200000) setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000003d80)=0x83, 0x4) write$P9_RREADDIR(r7, &(0x7f0000003dc0)={0x68, 0x29, 0x1, {0xffffffffffffff70, [{{0x1, 0x3, 0x4}, 0x7fffffff, 0xfffffffffffffffc, 0x7, './file0'}, {{0x81, 0x3, 0x3}, 0x7, 0x7ff, 0x7, './file0'}, {{0xa0, 0x4, 0x4}, 0x9, 0x7, 0x7, './file0'}]}}, 0x68) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r7, 0x40045731, &(0x7f0000003e40)=0xf3) [ 205.188374] tcp_sendmsg_locked+0x2882/0x3f10 [ 205.192879] ? lock_acquire+0x1e4/0x540 [ 205.196889] ? lock_downgrade+0x8f0/0x8f0 [ 205.201044] ? lock_acquire+0x1e4/0x540 [ 205.205017] ? tcp_sendpage+0x60/0x60 [ 205.208825] ? __fget+0x4d5/0x740 [ 205.212293] ? _parse_integer+0x190/0x190 [ 205.216440] ? lock_acquire+0x1e4/0x540 [ 205.220410] ? tcp_sendmsg+0x21/0x50 [ 205.224127] ? lock_release+0xa30/0xa30 [ 205.228107] ? kasan_check_read+0x11/0x20 [ 205.232251] ? do_raw_spin_unlock+0xa7/0x2f0 [ 205.236661] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 205.241247] ? kasan_check_write+0x14/0x20 [ 205.245471] ? lock_sock_nested+0x9f/0x120 [ 205.249711] ? trace_hardirqs_on+0xd/0x10 [ 205.253854] ? __local_bh_enable_ip+0x161/0x230 [ 205.258517] tcp_sendmsg+0x2f/0x50 [ 205.262046] inet_sendmsg+0x1a1/0x690 [ 205.265830] ? ipip_gro_receive+0x100/0x100 [ 205.270167] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 205.275693] ? security_socket_sendmsg+0x94/0xc0 [ 205.280433] ? ipip_gro_receive+0x100/0x100 [ 205.284744] sock_sendmsg+0xd5/0x120 [ 205.288488] __sys_sendto+0x3d7/0x670 [ 205.292274] ? __ia32_sys_getpeername+0xb0/0xb0 [ 205.296927] ? vfs_write+0x2f3/0x560 [ 205.300626] ? wait_for_completion+0x8d0/0x8d0 [ 205.305465] ? lock_release+0xa30/0xa30 [ 205.309427] ? fsnotify_first_mark+0x350/0x350 [ 205.313992] ? __fsnotify_parent+0xcc/0x420 [ 205.318300] ? fsnotify+0x14e0/0x14e0 [ 205.322088] ? __sb_end_write+0xac/0xe0 [ 205.326059] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 205.331584] ? fput+0x130/0x1a0 [ 205.334853] ? ksys_write+0x1ae/0x260 [ 205.338639] ? __ia32_sys_read+0xb0/0xb0 [ 205.342698] ? syscall_slow_exit_work+0x500/0x500 [ 205.347541] __x64_sys_sendto+0xe1/0x1a0 [ 205.351587] do_syscall_64+0x1b9/0x820 [ 205.355470] ? syscall_return_slowpath+0x5e0/0x5e0 [ 205.360385] ? syscall_return_slowpath+0x31d/0x5e0 [ 205.365312] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 205.370317] ? prepare_exit_to_usermode+0x291/0x3b0 [ 205.375321] ? perf_trace_sys_enter+0xb10/0xb10 [ 205.379978] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 205.384809] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 205.389984] RIP: 0033:0x455e29 [ 205.393154] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 205.412324] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 205.420024] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 205.427276] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 205.434529] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 205.441872] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 205.449125] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 0000000000000004 [ 205.464627] IPVS: ftp: loaded support on port[0] = 21 [ 205.472686] binder: 13739:13745 BC_FREE_BUFFER u0000000000000000 no match 04:53:35 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10012) 04:53:35 executing program 7 (fault-call:7 fault-nth:5): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) [ 205.501743] binder_alloc: binder_alloc_mmap_handler: 13739 20001000-20004000 already mapped failed -16 [ 205.522243] binder: BINDER_SET_CONTEXT_MGR already set [ 205.541270] binder: 13739:13745 ioctl 40046207 0 returned -16 04:53:35 executing program 1: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$invalidate(0x15, r0) r1 = gettid() ptrace$pokeuser(0x6, r1, 0x3, 0x8) request_key(&(0x7f0000000080)='cifs.spnego\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000100)='keyring\x00', 0xffffffffffffffff) ptrace$setopts(0x4200, r1, 0x3, 0x0) r2 = accept4$inet(0xffffffffffffff9c, 0x0, &(0x7f0000000400), 0x80800) getsockopt$ARPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x63, &(0x7f0000000440)={'ipvs\x00'}, &(0x7f0000000480)=0x1e) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/rfkill\x00', 0x20000, 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r3, 0x40045402, &(0x7f0000000500)) open$dir(&(0x7f0000000540)='./file0\x00', 0x600080, 0x48) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000580)={'ip6gre0\x00', 0x110}) ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, &(0x7f00000005c0)={0x8, 0x0, [{0x2, 0xff, 0x4}, {0x8000000e, 0x5, 0x9, 0x2, 0x6}, {0x40000000, 0x2f, 0x101, 0x6, 0xffff}, {0x1, 0x3, 0x7ff, 0xffffffff80000000, 0x6}, {0x0, 0x1, 0x8, 0x8001, 0x9}, {0x4, 0xfffffffffffffffa, 0xfffffffffffffff8, 0x6, 0x5a4}, {0x0, 0x9, 0x95a5, 0x26aa, 0x9}, {0x4, 0x0, 0xa07b, 0x5, 0x8}]}) getsockopt$llc_int(r3, 0x10c, 0x4, &(0x7f00000006c0), &(0x7f0000000700)=0x4) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r3, 0x84, 0x18, &(0x7f0000000740)={0x0, 0x1f}, &(0x7f0000000780)=0x8) setsockopt$inet_sctp6_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f00000007c0)={r4, 0xf592, 0x6, 0x2c09}, 0x10) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f0000000800)={r4, 0x4}, &(0x7f0000000840)=0x8) setsockopt$inet6_mtu(r3, 0x29, 0x17, &(0x7f0000000880)=0x1, 0x4) ioctl$KVM_GET_FPU(r3, 0x81a0ae8c, &(0x7f00000008c0)) writev(r3, &(0x7f0000000c80)=[{&(0x7f0000000a80)="c4", 0x1}, {&(0x7f0000000ac0)="6a0e0b6cebdf72c048a3546118e599226e32709ef5216ae5dcea60cae3e03f70dcf464beea8881a8863da32b11ff214d59fd88626a", 0x35}, {&(0x7f0000000b00)="454a049b719b3192ca3e6cc4c869fbf33f32e26cad194cfb48347302d8adbca3803d6842b70250d1a9a6bf8b18f330b5dbf9ead7f248367cd8b14e9a37a7d7ca1e4953cc67fbe868efc015611f5f49686032", 0x52}, {&(0x7f0000000b80)="4b09718be9aebb78cea7ca3de6ab9b2db58a5fc23a526e2ba8570bcd3430ed09c0cc8322e428699660c0a04c982db86eb55ed9a87da9d50e2533afb1e83e01a1c718ae6a80745b34bb58892976d3dfc11ec9605bf620457b1a366883a5da1dab701fd7d53aa253e8c3c1a5aaeedb8a3188b128a6619f885312478afbe4ae92c5d704f80980b8554e95c2222be00d4a2e", 0x90}, {&(0x7f0000000c40)="1546fa0cbf1a64f4ecc5c145ff98bfdfc3766e60ea32fa85f543b074", 0x1c}], 0x5) ioctl$TIOCNOTTY(r3, 0x5422) setsockopt$inet_opts(r2, 0x0, 0x9, &(0x7f0000000d00)="27e372b5247e5be2e1eee334a794af1e3d070cd47385b376b5d3707536d7f3d188e9af7310d67243b5b94eaeb02b914a5e8040e8f66f603ad853e671290f4fe763717ce77167a248c7eca5a96860ac304bae8a6d95b9fed00507d6f30af4ce6e53cc6b2f7bb96930db41f96f3cb14e887e1b4d0ef0f62dcc97419c15ef000145864cf1e2a635350323f8164f4040f7aa9c9d2f5007ecb96e980bba25ea1f0e2ee747cd79ccfcb20002268ffaadcba552bcd0f8c494f2b5f0c944c67de2811b4fe2dfe9fbd3459cc7027ca3245328ebbcd1126b47f89c0db48e485de7e867b363383558cbefc99823013c8be5bb1198d99b7633b9b56df3", 0xf7) r5 = syz_genetlink_get_family_id$team(&(0x7f0000000e40)='team\x00') getpeername$packet(r3, &(0x7f0000000e80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000ec0)=0x14) clock_gettime(0x0, &(0x7f0000007b00)={0x0, 0x0}) recvmmsg(r3, &(0x7f0000007880)=[{{&(0x7f0000000f00)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, 0x80, &(0x7f0000003140)=[{&(0x7f0000000f80)=""/177, 0xb1}, {&(0x7f0000001040)=""/4096, 0x1000}, {&(0x7f0000002040)=""/4096, 0x1000}, {&(0x7f0000003040)}, {&(0x7f0000003080)=""/22, 0x16}, {&(0x7f00000030c0)=""/103, 0x67}], 0x6, &(0x7f00000031c0)=""/9, 0x9, 0xfffffffffffffff9}, 0x8}, {{&(0x7f0000003200)=@rc, 0x80, &(0x7f0000005480)=[{&(0x7f0000003280)=""/7, 0x7}, {&(0x7f00000032c0)=""/138, 0x8a}, {&(0x7f0000003380)=""/236, 0xec}, {&(0x7f0000003480)=""/4096, 0x1000}, {&(0x7f0000004480)=""/4096, 0x1000}], 0x5, &(0x7f0000005500)=""/37, 0x25, 0xd3f3}, 0x4}, {{&(0x7f0000005540)=@pppol2tpv3={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @rand_addr}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000055c0)=""/103, 0x67}], 0x1, &(0x7f0000005680)=""/110, 0x6e, 0x8}, 0x7}, {{&(0x7f0000005700)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000005840)=[{&(0x7f0000005780)=""/155, 0x9b}], 0x1, &(0x7f0000005880)=""/25, 0x19, 0x7ff}, 0x9}, {{0x0, 0x0, &(0x7f0000006bc0)=[{&(0x7f00000058c0)=""/195, 0xc3}, {&(0x7f00000059c0)=""/4096, 0x1000}, {&(0x7f00000069c0)=""/146, 0x92}, {&(0x7f0000006a80)=""/15, 0xf}, {&(0x7f0000006ac0)=""/29, 0x1d}, {&(0x7f0000006b00)=""/153, 0x99}], 0x6, &(0x7f0000006c40)=""/31, 0x1f, 0x8}, 0x1a0a62d1}, {{&(0x7f0000006c80)=@pppoe={0x0, 0x0, {0x0, @random}}, 0x80, &(0x7f0000006f80)=[{&(0x7f0000006d00)=""/143, 0x8f}, {&(0x7f0000006dc0)=""/156, 0x9c}, {&(0x7f0000006e80)=""/240, 0xf0}], 0x3, &(0x7f0000006fc0)=""/244, 0xf4, 0x2e2193aa}, 0x7fffffff}, {{&(0x7f00000070c0)=@nfc_llcp, 0x80, &(0x7f00000071c0)=[{&(0x7f0000007140)=""/113, 0x71}], 0x1, &(0x7f0000007200)=""/187, 0xbb, 0xcd1d}, 0x9}, {{0x0, 0x0, &(0x7f0000007400)=[{&(0x7f00000072c0)=""/39, 0x27}, {&(0x7f0000007300)=""/74, 0x4a}, {&(0x7f0000007380)=""/125, 0x7d}], 0x3, 0x0, 0x0, 0x6}, 0xffffffff7fffffff}, {{0x0, 0x0, &(0x7f00000074c0)=[{&(0x7f0000007440)=""/74, 0x4a}], 0x1, &(0x7f0000007500)=""/241, 0xf1, 0x482}, 0x9}, {{&(0x7f0000007600)=@hci={0x0, 0x0}, 0x80, &(0x7f0000007780)=[{&(0x7f0000007680)=""/233, 0xe9}], 0x1, &(0x7f00000077c0)=""/158, 0x9e, 0x4}, 0x1}], 0xa, 0x2000, &(0x7f0000007b40)={r7, r8+10000000}) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000007b80)={'team0\x00', 0x0}) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000007c80)={'team0\x00', 0x0}) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000007cc0)={'team0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000007d00)={'ipddp0\x00', 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f000000a780)={{{@in=@dev, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@loopback}}, &(0x7f000000a880)=0xe8) getsockopt$inet_mreqn(r2, 0x0, 0x24, &(0x7f000000a980)={@rand_addr, @rand_addr, 0x0}, &(0x7f000000a9c0)=0xc) sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f000000adc0)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f000000ad80)={&(0x7f000000aa00)={0x364, r5, 0x500, 0x70bd29, 0x25dfdbfb, {0x1}, [{{0x8, 0x1, r6}, {0x214, 0x2, [{0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8, 0x3, 0x5}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r9}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0x10, 0x4, 'roundrobin\x00'}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r11}}}, {0x44, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x14, 0x4, [{0x10000, 0x1, 0x10001, 0x7}, {0x10000, 0xfffffffffffffffa, 0x9d, 0x9}]}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8, 0x3, 0xe}, {0x8, 0x4, 0xa7}}, {0x8, 0x6, r12}}}]}}, {{0x8, 0x1, r13}, {0x12c, 0x2, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0x10, 0x4, 'broadcast\x00'}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r14}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x1c7}}, {0x8, 0x6, r15}}}]}}]}, 0x364}, 0x1, 0x0, 0x0, 0x4}, 0x44) 04:53:35 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x18000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 205.547187] binder_alloc: 13739: binder_alloc_buf, no vma [ 205.547215] binder: 13739:13749 transaction failed 29189/-3, size 24-8 line 2967 [ 205.559214] binder: 13739:13750 Release 1 refcount change on invalid ref 1 ret -22 [ 205.569676] IPVS: ftp: loaded support on port[0] = 21 [ 205.579795] binder: 13739:13750 BC_FREE_BUFFER u0000000000000000 no match 04:53:35 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xc0045877, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:35 executing program 2: r0 = socket(0x10, 0x2, 0x5) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/arp\x00') sendfile(r0, r1, &(0x7f0000000080), 0x20000000) 04:53:35 executing program 5: socket$bt_rfcomm(0x1f, 0x1, 0x3) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x200000002, 0x7ffffffffff) r2 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r2, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, r1, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}}, 0x26) r3 = msgget$private(0x0, 0x6) msgctl$IPC_INFO(r3, 0x3, &(0x7f0000000000)=""/111) sendmmsg(r2, &(0x7f00000035c0)=[{{0x0, 0x0, &(0x7f0000001ac0), 0x0, &(0x7f0000001b00)}}, {{&(0x7f00000020c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random="d549bd5232ea"}, 0x80, &(0x7f00000033c0), 0x0, &(0x7f0000003440)}}], 0x2, 0x0) [ 205.595799] binder: release 13739:13745 transaction 11 out, still active [ 205.602753] binder: undelivered TRANSACTION_COMPLETE [ 205.618567] binder: undelivered TRANSACTION_ERROR: 29189 [ 205.635254] binder: send failed reply for transaction 11, target dead 04:53:35 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") ioctl$sock_inet6_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000)) socket$pptp(0x18, 0x1, 0x3) 04:53:35 executing program 1: r0 = socket(0xa, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'veth0_to_bond\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={@loopback={0x0, 0x1}, @local={0xfe, 0x80, [], 0xaa}, @loopback={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40007, r1}) ioctl(r0, 0x3f, &(0x7f0000000100)="7f1370613d4c58ea8b34bf36ac53159806f4ff823aa0a3291b6b5f787f77578e4aba2150ce6700df841339eba19d69cf70899c2370318d4d5435f9eb88f19265b793da5c336334b0002839db2f87f0d197cac66b7ac5d834a950bcff79332d6c49a6260cbc0a6264160e545642f211f9253812404abf034d274e2481ec158537fa485bbbe193da099bfb474cff2e10a764d4edb92a36866160ef12d6ce66451e996f3f4d4b31547f0d6339c78f98fb8e6d9b0bee52baec36155c7ab689c9229b9e913726e00f4001bb968baebaad6ea03ea86645582891306391a163b8e59b4f6ab210ea51cfcd578fc1ad7d57") ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000000)=0x1000) [ 205.730687] FAULT_INJECTION: forcing a failure. [ 205.730687] name failslab, interval 1, probability 0, space 0, times 0 [ 205.742085] CPU: 0 PID: 13782 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 205.750488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 205.759841] Call Trace: [ 205.762443] dump_stack+0x1c9/0x2b4 [ 205.766077] ? dump_stack_print_info.cold.2+0x52/0x52 [ 205.771280] ? __ip_local_out+0x5e3/0xb50 [ 205.775443] should_fail.cold.4+0xa/0x11 [ 205.779511] ? lock_downgrade+0x8f0/0x8f0 [ 205.783651] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 205.788753] ? sock_alloc_send_skb+0x40/0x40 [ 205.793147] ? __kmalloc_node_track_caller+0x47/0x70 [ 205.798235] ? lock_acquire+0x1e4/0x540 [ 205.802192] ? debug_object_activate+0x41a/0x690 [ 205.806933] ? lock_downgrade+0x8f0/0x8f0 [ 205.811069] ? kasan_check_read+0x11/0x20 [ 205.815200] ? do_raw_spin_unlock+0xa7/0x2f0 [ 205.819593] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 205.824168] ? kasan_check_write+0x14/0x20 [ 205.828390] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 205.833139] ? retint_kernel+0x10/0x10 [ 205.837024] ? do_raw_spin_unlock+0xa7/0x2f0 [ 205.841429] ? _raw_spin_unlock_irqrestore+0xa1/0xc0 [ 205.846537] __should_failslab+0x124/0x180 [ 205.850759] should_failslab+0x9/0x14 [ 205.854559] kmem_cache_alloc_node+0x56/0x780 [ 205.859043] ? mod_timer_pending+0x14b0/0x14b0 [ 205.863610] ? lock_release+0xa30/0xa30 [ 205.867567] __alloc_skb+0x119/0x790 [ 205.871269] ? skb_scrub_packet+0x490/0x490 [ 205.875576] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 205.881100] ? tcp_fastopen_active_should_disable+0x270/0x330 [ 205.886984] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 205.892511] ? refcount_inc_not_zero+0x1e5/0x2f0 [ 205.897263] ? refcount_add_not_zero+0x330/0x330 [ 205.902019] ? sk_stream_alloc_skb+0x342/0x970 [ 205.906606] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 205.912129] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 205.917647] skb_copy+0x143/0x310 [ 205.921079] ? inet_bind+0x160/0x160 [ 205.924787] tcp_send_synack+0x5ed/0x1260 [ 205.928918] ? refcount_inc+0x29/0x70 [ 205.932701] ? tcp_send_active_reset+0xa40/0xa40 [ 205.937440] ? trace_hardirqs_on+0x10/0x10 [ 205.941658] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 205.947175] ? tcp_sync_mss+0x35e/0xba0 [ 205.951143] ? tcp_wfree+0x770/0x770 [ 205.954844] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 205.960362] ? tcp_parse_options+0x1c1/0xe30 [ 205.964752] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 205.970280] ? tcp_mtup_init+0x2c2/0x360 [ 205.974338] tcp_rcv_state_process+0x22b1/0x4fff [ 205.979079] ? tcp_finish_connect+0x520/0x520 [ 205.983557] ? ktime_get_with_offset+0x32e/0x4b0 [ 205.988300] ? ktime_get+0x440/0x440 [ 205.991996] ? __release_sock+0xcb/0x3a0 [ 205.996048] ? lock_downgrade+0x8f0/0x8f0 [ 206.000200] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 206.004776] tcp_v4_do_rcv+0x367/0x8f0 [ 206.008646] ? tcp_v4_do_rcv+0x367/0x8f0 [ 206.012690] __release_sock+0x12f/0x3a0 [ 206.016669] release_sock+0xad/0x2c0 [ 206.020367] ? __release_sock+0x3a0/0x3a0 [ 206.024503] ? lock_acquire+0x1e4/0x540 [ 206.028462] __inet_stream_connect+0x61f/0x1150 [ 206.033121] ? inet_dgram_connect+0x2e0/0x2e0 [ 206.037801] ? __init_waitqueue_head+0x150/0x150 [ 206.042547] ? kasan_kmalloc+0xc4/0xe0 [ 206.046418] ? kmem_cache_alloc_trace+0x318/0x780 [ 206.051245] tcp_sendmsg_locked+0x2882/0x3f10 [ 206.055744] ? lock_acquire+0x1e4/0x540 [ 206.059712] ? lock_downgrade+0x8f0/0x8f0 [ 206.063853] ? lock_acquire+0x1e4/0x540 [ 206.067811] ? tcp_sendpage+0x60/0x60 [ 206.071593] ? __fget+0x4d5/0x740 [ 206.075038] ? _parse_integer+0x190/0x190 [ 206.079173] ? lock_acquire+0x1e4/0x540 [ 206.083130] ? tcp_sendmsg+0x21/0x50 [ 206.086835] ? lock_release+0xa30/0xa30 [ 206.090817] ? kasan_check_read+0x11/0x20 [ 206.094953] ? do_raw_spin_unlock+0xa7/0x2f0 [ 206.099360] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 206.103931] ? kasan_check_write+0x14/0x20 [ 206.108154] ? lock_sock_nested+0x9f/0x120 [ 206.112380] ? trace_hardirqs_on+0xd/0x10 [ 206.116508] ? __local_bh_enable_ip+0x161/0x230 [ 206.121166] tcp_sendmsg+0x2f/0x50 [ 206.124689] inet_sendmsg+0x1a1/0x690 [ 206.128472] ? ipip_gro_receive+0x100/0x100 [ 206.132787] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 206.138322] ? security_socket_sendmsg+0x94/0xc0 [ 206.143061] ? ipip_gro_receive+0x100/0x100 [ 206.147376] sock_sendmsg+0xd5/0x120 [ 206.151073] __sys_sendto+0x3d7/0x670 [ 206.154856] ? __ia32_sys_getpeername+0xb0/0xb0 [ 206.159506] ? vfs_write+0x2f3/0x560 [ 206.163213] ? wait_for_completion+0x8d0/0x8d0 [ 206.167777] ? lock_release+0xa30/0xa30 [ 206.171742] ? fsnotify_first_mark+0x350/0x350 [ 206.176306] ? __fsnotify_parent+0xcc/0x420 [ 206.180606] ? fsnotify+0x14e0/0x14e0 [ 206.184409] ? __sb_end_write+0xac/0xe0 [ 206.188369] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 206.193886] ? fput+0x130/0x1a0 [ 206.197144] ? ksys_write+0x1ae/0x260 [ 206.200925] ? __ia32_sys_read+0xb0/0xb0 [ 206.204970] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 206.210506] __x64_sys_sendto+0xe1/0x1a0 [ 206.214554] do_syscall_64+0x1b9/0x820 [ 206.218434] ? finish_task_switch+0x1d3/0x870 [ 206.222922] ? syscall_return_slowpath+0x5e0/0x5e0 [ 206.227841] ? syscall_return_slowpath+0x31d/0x5e0 [ 206.232760] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 206.237760] ? prepare_exit_to_usermode+0x291/0x3b0 [ 206.242760] ? perf_trace_sys_enter+0xb10/0xb10 [ 206.247413] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 206.252245] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 206.257424] RIP: 0033:0x455e29 [ 206.260595] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 206.279732] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 206.287424] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 206.294685] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 206.301936] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 206.309213] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 206.316467] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 0000000000000005 04:53:36 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10500) 04:53:36 executing program 2: r0 = accept4(0xffffffffffffffff, &(0x7f0000000040)=@pppoe={0x0, 0x0, {0x0, @local}}, &(0x7f00000000c0)=0x80, 0x0) getsockopt$bt_sco_SCO_CONNINFO(r0, 0x11, 0x2, &(0x7f0000000100)=""/67, &(0x7f0000000180)=0x43) r1 = gettid() mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) r2 = socket$inet6(0xa, 0x1, 0x0) ioctl(r2, 0x4000008912, &(0x7f0000000100)="295ee1311f16f477671070") r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-des3_ede-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000000), 0x18) process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xffffff80}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) 04:53:36 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xfeffffff, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:36 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x8138ae83, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:36 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f00000000c0)="075cc83d6d345f8f762070") clone(0x0, &(0x7f0000000140), &(0x7f0000000000), &(0x7f00000000c0), &(0x7f0000000000)) clone(0x0, &(0x7f0000000100), &(0x7f0000000040), &(0x7f0000000ffc), &(0x7f0000000140)) clone(0x0, &(0x7f00000001c0), &(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000340)) socket$inet6(0xa, 0x0, 0x0) prctl$intptr(0x24, 0xf91) 04:53:36 executing program 7 (fault-call:7 fault-nth:6): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:36 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000000000)={&(0x7f0000de2ff4)={0x10}, 0x23d, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, 0x1, 0x6, 0xffffffffffffffff}, 0x14}, 0x1}, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000100), &(0x7f0000000140)=0x4) 04:53:36 executing program 3: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000180)={0x0, 0xd31c607fea2db549}, 0xc) signalfd(r0, &(0x7f0000000000)={0x9}, 0x8) [ 206.698468] FAULT_INJECTION: forcing a failure. [ 206.698468] name failslab, interval 1, probability 0, space 0, times 0 [ 206.709852] CPU: 1 PID: 13832 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 206.718257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 206.727613] Call Trace: [ 206.730217] dump_stack+0x1c9/0x2b4 [ 206.733861] ? dump_stack_print_info.cold.2+0x52/0x52 [ 206.739070] should_fail.cold.4+0xa/0x11 [ 206.743153] ? __kernel_text_address+0xd/0x40 [ 206.747678] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 206.752797] ? __save_stack_trace+0x8d/0xf0 [ 206.757136] ? save_stack+0xa9/0xd0 [ 206.760782] ? save_stack+0x43/0xd0 [ 206.764416] ? kasan_kmalloc+0xc4/0xe0 [ 206.768307] ? kasan_slab_alloc+0x12/0x20 [ 206.772459] ? kmem_cache_alloc_node+0x144/0x780 [ 206.777219] ? __alloc_skb+0x119/0x790 [ 206.781113] ? skb_copy+0x143/0x310 [ 206.784754] ? tcp_send_synack+0x5ed/0x1260 [ 206.789085] ? tcp_rcv_state_process+0x22b1/0x4fff [ 206.794023] ? tcp_v4_do_rcv+0x367/0x8f0 [ 206.798176] ? __release_sock+0x12f/0x3a0 [ 206.802327] ? release_sock+0xad/0x2c0 [ 206.806224] ? __inet_stream_connect+0x61f/0x1150 [ 206.811071] ? tcp_sendmsg_locked+0x2882/0x3f10 [ 206.815749] ? tcp_sendmsg+0x2f/0x50 [ 206.819467] ? inet_sendmsg+0x1a1/0x690 [ 206.823448] ? sock_sendmsg+0xd5/0x120 [ 206.827348] ? __sys_sendto+0x3d7/0x670 [ 206.831334] ? __x64_sys_sendto+0xe1/0x1a0 [ 206.835579] ? do_syscall_64+0x1b9/0x820 [ 206.839649] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 206.845025] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 206.849624] ? kasan_check_write+0x14/0x20 [ 206.853867] ? mod_timer+0x5ee/0x13d0 [ 206.857685] ? trace_hardirqs_off+0xd/0x10 [ 206.861932] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 206.867052] ? kasan_check_read+0x11/0x20 [ 206.871211] ? do_raw_spin_unlock+0xa7/0x2f0 [ 206.875626] __should_failslab+0x124/0x180 [ 206.879868] should_failslab+0x9/0x14 [ 206.883672] kmem_cache_alloc_node_trace+0x5a/0x770 [ 206.888695] ? kasan_kmalloc+0xc4/0xe0 [ 206.892596] __kmalloc_node_track_caller+0x33/0x70 [ 206.897533] __kmalloc_reserve.isra.41+0x3a/0xe0 [ 206.902308] __alloc_skb+0x155/0x790 [ 206.906054] ? skb_scrub_packet+0x490/0x490 [ 206.910382] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 206.915937] ? tcp_fastopen_active_should_disable+0x270/0x330 [ 206.921832] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 206.927372] ? refcount_inc_not_zero+0x1e5/0x2f0 [ 206.932135] ? refcount_add_not_zero+0x330/0x330 [ 206.936893] ? sk_stream_alloc_skb+0x342/0x970 [ 206.941479] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 206.947022] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 206.952569] skb_copy+0x143/0x310 [ 206.956030] ? inet_bind+0x160/0x160 [ 206.959759] tcp_send_synack+0x5ed/0x1260 [ 206.963912] ? refcount_inc+0x29/0x70 [ 206.967722] ? tcp_send_active_reset+0xa40/0xa40 [ 206.972497] ? trace_hardirqs_on+0x10/0x10 [ 206.976752] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 206.982299] ? tcp_sync_mss+0x35e/0xba0 [ 206.986278] ? tcp_wfree+0x770/0x770 [ 206.990002] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 206.995546] ? tcp_parse_options+0x1c1/0xe30 [ 206.999959] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 207.005493] ? tcp_mtup_init+0x2c2/0x360 [ 207.009553] tcp_rcv_state_process+0x22b1/0x4fff [ 207.014325] ? tcp_finish_connect+0x520/0x520 [ 207.018817] ? __release_sock+0xcb/0x3a0 [ 207.022879] ? lock_downgrade+0x8f0/0x8f0 [ 207.027034] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 207.031625] tcp_v4_do_rcv+0x367/0x8f0 [ 207.035518] ? tcp_v4_do_rcv+0x367/0x8f0 [ 207.039587] __release_sock+0x12f/0x3a0 [ 207.043592] release_sock+0xad/0x2c0 [ 207.047316] ? __release_sock+0x3a0/0x3a0 [ 207.051474] ? lock_acquire+0x1e4/0x540 [ 207.055457] __inet_stream_connect+0x61f/0x1150 [ 207.060130] ? inet_dgram_connect+0x2e0/0x2e0 [ 207.064630] ? __init_waitqueue_head+0x150/0x150 [ 207.069401] ? kasan_kmalloc+0xc4/0xe0 [ 207.073307] ? kmem_cache_alloc_trace+0x318/0x780 [ 207.078172] tcp_sendmsg_locked+0x2882/0x3f10 [ 207.082680] ? lock_acquire+0x1e4/0x540 [ 207.086663] ? lock_downgrade+0x8f0/0x8f0 [ 207.090820] ? lock_acquire+0x1e4/0x540 [ 207.094802] ? tcp_sendpage+0x60/0x60 [ 207.098618] ? __fget+0x4d5/0x740 [ 207.102060] ? _parse_integer+0x190/0x190 [ 207.106207] ? lock_acquire+0x1e4/0x540 [ 207.110172] ? tcp_sendmsg+0x21/0x50 [ 207.113889] ? lock_release+0xa30/0xa30 [ 207.117861] ? kasan_check_read+0x11/0x20 [ 207.121999] ? do_raw_spin_unlock+0xa7/0x2f0 [ 207.126407] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 207.130999] ? kasan_check_write+0x14/0x20 [ 207.135235] ? lock_sock_nested+0x9f/0x120 [ 207.139475] ? trace_hardirqs_on+0xd/0x10 [ 207.143629] ? __local_bh_enable_ip+0x161/0x230 [ 207.148298] tcp_sendmsg+0x2f/0x50 [ 207.151838] inet_sendmsg+0x1a1/0x690 [ 207.155629] ? ipip_gro_receive+0x100/0x100 [ 207.159948] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 207.165493] ? security_socket_sendmsg+0x94/0xc0 [ 207.170255] ? ipip_gro_receive+0x100/0x100 [ 207.174585] sock_sendmsg+0xd5/0x120 [ 207.178305] __sys_sendto+0x3d7/0x670 [ 207.182111] ? __ia32_sys_getpeername+0xb0/0xb0 [ 207.186780] ? vfs_write+0x2f3/0x560 [ 207.190501] ? wait_for_completion+0x8d0/0x8d0 [ 207.195517] ? lock_release+0xa30/0xa30 [ 207.199510] ? fsnotify_first_mark+0x350/0x350 [ 207.204097] ? __fsnotify_parent+0xcc/0x420 [ 207.208423] ? fsnotify+0x14e0/0x14e0 [ 207.212235] ? __sb_end_write+0xac/0xe0 [ 207.216218] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 207.221773] ? fput+0x130/0x1a0 [ 207.225057] ? ksys_write+0x1ae/0x260 [ 207.228862] ? __ia32_sys_read+0xb0/0xb0 [ 207.232926] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 207.238477] __x64_sys_sendto+0xe1/0x1a0 [ 207.242550] do_syscall_64+0x1b9/0x820 [ 207.246440] ? finish_task_switch+0x1d3/0x870 [ 207.250937] ? syscall_return_slowpath+0x5e0/0x5e0 [ 207.255871] ? syscall_return_slowpath+0x31d/0x5e0 [ 207.260794] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 207.265807] ? prepare_exit_to_usermode+0x291/0x3b0 [ 207.270840] ? perf_trace_sys_enter+0xb10/0xb10 [ 207.275508] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 207.280348] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 207.285537] RIP: 0033:0x455e29 [ 207.288729] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 207.307863] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 207.315568] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 207.322828] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 207.330084] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 207.337338] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 04:53:36 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xf00, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:36 executing program 2: r0 = syz_open_dev$sndmidi(&(0x7f0000653fee)='/dev/snd/midiC#D#\x00', 0x200, 0x0) poll(&(0x7f0000000000)=[{r0}], 0x1, 0x10000000) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x2, 0x0) dup2(r0, r1) ioctl$EVIOCGSW(r1, 0x8040451b, &(0x7f0000000080)=""/167) 04:53:36 executing program 3: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f0000000280)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000000000)='./control/file0\x00') shmctl$IPC_RMID(0x0, 0x0) rmdir(&(0x7f00000000c0)='./control\x00') ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, &(0x7f0000000340)={{}, 0x1, 0x0, 0x0, {0xffffffff80000001, 0x81}}) syz_fuse_mount(&(0x7f0000000240)='./control\x00', 0x406000, 0x0, 0x0, 0x0, 0x0) close(r1) 04:53:36 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xffffffffffffffff, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:36 executing program 5: pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) pipe2(&(0x7f0000f61000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r3 = userfaultfd(0x0) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000bc8000)={0xaa}) write$eventfd(r2, &(0x7f0000000040)=0x400000000, 0x8) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000d62fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) write$sndseq(r0, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @queue}], 0x1c) tee(r1, r0, 0x8, 0x0) dup2(r1, r3) 04:53:36 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xf, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:37 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xe4ffffff00000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:37 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x4000000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:37 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x14000) 04:53:37 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xfeffffff00000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 207.344592] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 0000000000000006 04:53:37 executing program 1: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xf, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:37 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x41a0ae8d, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:37 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x300, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:37 executing program 7 (fault-call:7 fault-nth:7): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:37 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0xffffffff000) 04:53:37 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0xffffffe4, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:37 executing program 1: r0 = socket(0x10, 0x2, 0x0) r1 = msgget(0x0, 0x0) msgrcv(r1, &(0x7f0000000000)={0x0, ""/234}, 0xf2, 0x3, 0x3800) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(r2, r2, 0x0) setfsuid(0x0) [ 207.637542] FAULT_INJECTION: forcing a failure. [ 207.637542] name failslab, interval 1, probability 0, space 0, times 0 [ 207.648809] CPU: 1 PID: 13907 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 207.657215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 207.666581] Call Trace: [ 207.669163] dump_stack+0x1c9/0x2b4 [ 207.672780] ? dump_stack_print_info.cold.2+0x52/0x52 [ 207.677959] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 207.682963] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 207.687710] should_fail.cold.4+0xa/0x11 [ 207.691779] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 207.696881] ? lock_acquire+0x1e4/0x540 [ 207.700840] ? is_bpf_text_address+0xae/0x170 [ 207.705321] ? lock_downgrade+0x8f0/0x8f0 [ 207.709454] ? lock_release+0xa30/0xa30 [ 207.713735] ? kasan_check_read+0x11/0x20 [ 207.717869] ? rcu_is_watching+0x8c/0x150 [ 207.722004] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 207.726674] ? is_bpf_text_address+0xd7/0x170 [ 207.731174] ? kernel_text_address+0x79/0xf0 [ 207.735567] ? __kernel_text_address+0xd/0x40 [ 207.740049] ? unwind_get_return_address+0x61/0xa0 [ 207.744966] ? __save_stack_trace+0x8d/0xf0 [ 207.749274] __should_failslab+0x124/0x180 [ 207.753509] should_failslab+0x9/0x14 [ 207.757293] kmem_cache_alloc+0x47/0x760 [ 207.761359] ? save_stack+0x43/0xd0 [ 207.764976] ? kasan_kmalloc+0xc4/0xe0 [ 207.768847] ? __kmalloc_node_track_caller+0x47/0x70 [ 207.773936] ? __kmalloc_reserve.isra.41+0x3a/0xe0 [ 207.778852] ? __alloc_skb+0x155/0x790 [ 207.782812] ? skb_copy+0x143/0x310 [ 207.786428] ? tcp_send_synack+0x5ed/0x1260 [ 207.790735] ? tcp_rcv_state_process+0x22b1/0x4fff [ 207.795653] ? tcp_v4_do_rcv+0x367/0x8f0 [ 207.799725] skb_clone+0x1f5/0x500 [ 207.803257] ? __sys_sendto+0x3d7/0x670 [ 207.807218] ? __x64_sys_sendto+0x60/0x1a0 [ 207.811450] ? skb_split+0x11f0/0x11f0 [ 207.815327] ? kasan_check_write+0x14/0x20 [ 207.819548] ? mod_timer+0x5ee/0x13d0 [ 207.823335] ? lock_downgrade+0x8f0/0x8f0 [ 207.827470] ? trace_hardirqs_off+0xd/0x10 [ 207.831712] ? _raw_spin_unlock_irqrestore+0x63/0xc0 [ 207.836817] tcp_transmit_skb+0x2b7/0x3f10 [ 207.841042] ? kasan_kmalloc+0xc4/0xe0 [ 207.844918] ? kmem_cache_alloc_node_trace+0x302/0x770 [ 207.850186] ? __tcp_select_window+0x9f0/0x9f0 [ 207.854765] ? kasan_kmalloc+0xc4/0xe0 [ 207.858648] ? __kmalloc_node_track_caller+0x47/0x70 [ 207.863741] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 207.869276] ? refcount_sub_and_test+0x21a/0x350 [ 207.874022] ? refcount_inc_not_zero+0x2f0/0x2f0 [ 207.878768] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 207.884208] ? skb_release_data+0x1c4/0x880 [ 207.888514] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 207.894037] ? sock_spd_release+0x2e0/0x2e0 [ 207.898349] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 207.903883] ? kfree_skbmem+0x10b/0x230 [ 207.907843] ? skb_gro_receive+0x12c0/0x12c0 [ 207.912257] ? tcp_rbtree_insert+0x14c/0x1a0 [ 207.916651] tcp_send_synack+0x421/0x1260 [ 207.920801] ? refcount_inc+0x29/0x70 [ 207.924590] ? tcp_send_active_reset+0xa40/0xa40 [ 207.929335] ? trace_hardirqs_on+0x10/0x10 [ 207.933560] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 207.939084] ? tcp_wfree+0x770/0x770 [ 207.942786] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 207.948308] ? tcp_parse_options+0x1c1/0xe30 [ 207.952710] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 207.958228] ? tcp_mtup_init+0x2c2/0x360 [ 207.962287] tcp_rcv_state_process+0x22b1/0x4fff [ 207.967033] ? tcp_finish_connect+0x520/0x520 [ 207.971531] ? __release_sock+0xcb/0x3a0 [ 207.975578] ? lock_downgrade+0x8f0/0x8f0 [ 207.979725] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 207.984309] tcp_v4_do_rcv+0x367/0x8f0 [ 207.988198] ? tcp_v4_do_rcv+0x367/0x8f0 [ 207.992245] __release_sock+0x12f/0x3a0 [ 207.996207] release_sock+0xad/0x2c0 [ 207.999906] ? __release_sock+0x3a0/0x3a0 [ 208.004054] ? lock_acquire+0x1e4/0x540 [ 208.008020] __inet_stream_connect+0x61f/0x1150 [ 208.012711] ? inet_dgram_connect+0x2e0/0x2e0 [ 208.017192] ? __init_waitqueue_head+0x150/0x150 [ 208.021935] ? kasan_kmalloc+0xc4/0xe0 [ 208.025819] ? kmem_cache_alloc_trace+0x318/0x780 [ 208.030676] tcp_sendmsg_locked+0x2882/0x3f10 [ 208.035944] ? lock_acquire+0x1e4/0x540 [ 208.039907] ? lock_downgrade+0x8f0/0x8f0 [ 208.044043] ? lock_acquire+0x1e4/0x540 [ 208.048006] ? tcp_sendpage+0x60/0x60 [ 208.051796] ? __fget+0x4d5/0x740 [ 208.055247] ? _parse_integer+0x190/0x190 [ 208.059392] ? lock_acquire+0x1e4/0x540 [ 208.063349] ? tcp_sendmsg+0x21/0x50 [ 208.067057] ? lock_release+0xa30/0xa30 [ 208.071029] ? kasan_check_read+0x11/0x20 [ 208.075161] ? do_raw_spin_unlock+0xa7/0x2f0 [ 208.079554] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 208.084126] ? kasan_check_write+0x14/0x20 [ 208.088434] ? lock_sock_nested+0x9f/0x120 [ 208.092656] ? trace_hardirqs_on+0xd/0x10 [ 208.096794] ? __local_bh_enable_ip+0x161/0x230 [ 208.101448] tcp_sendmsg+0x2f/0x50 [ 208.104974] inet_sendmsg+0x1a1/0x690 [ 208.108758] ? ipip_gro_receive+0x100/0x100 [ 208.113068] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 208.118592] ? security_socket_sendmsg+0x94/0xc0 [ 208.123352] ? ipip_gro_receive+0x100/0x100 [ 208.127675] sock_sendmsg+0xd5/0x120 [ 208.131375] __sys_sendto+0x3d7/0x670 [ 208.135163] ? __ia32_sys_getpeername+0xb0/0xb0 [ 208.139816] ? vfs_write+0x2f3/0x560 [ 208.143528] ? wait_for_completion+0x8d0/0x8d0 [ 208.148529] ? lock_release+0xa30/0xa30 [ 208.152503] ? fsnotify_first_mark+0x350/0x350 [ 208.157067] ? __fsnotify_parent+0xcc/0x420 [ 208.161371] ? fsnotify+0x14e0/0x14e0 [ 208.165172] ? __sb_end_write+0xac/0xe0 [ 208.169133] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 208.174668] ? fput+0x130/0x1a0 [ 208.177945] ? ksys_write+0x1ae/0x260 [ 208.181819] ? __ia32_sys_read+0xb0/0xb0 [ 208.185866] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 208.191391] __x64_sys_sendto+0xe1/0x1a0 [ 208.195441] do_syscall_64+0x1b9/0x820 [ 208.199325] ? syscall_return_slowpath+0x5e0/0x5e0 [ 208.204243] ? syscall_return_slowpath+0x31d/0x5e0 [ 208.209159] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 208.214165] ? prepare_exit_to_usermode+0x291/0x3b0 [ 208.219241] ? perf_trace_sys_enter+0xb10/0xb10 [ 208.223906] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 208.228738] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 208.233911] RIP: 0033:0x455e29 [ 208.237079] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 208.256250] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 208.263943] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 208.271196] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 208.278727] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 208.285992] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 208.293258] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 0000000000000007 04:53:38 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x8000000010) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer\x00', 0x20002, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000240)={&(0x7f0000ffc000/0x3000)=nil, 0x3000}, &(0x7f0000000280)=0x10) syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0x10001, 0x4800) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffff9c, 0x84, 0xe, &(0x7f0000000100)={0x0, 0xf5d, 0x0, 0x9, 0x6, 0x2, 0x8, 0x3ff, {0x0, @in={{0x2, 0x4e22, @rand_addr=0x3ff}}, 0x7, 0xbd, 0x0, 0x7, 0x16c2bf93}}, &(0x7f00000001c0)=0xb0) sendmsg$nl_generic(r0, &(0x7f0000000040)={&(0x7f0000024000)={0x10}, 0xc, &(0x7f0000023ff0)={&(0x7f0000000400)=ANY=[@ANYBLOB="180000003000ff0a00000000000001007b7aaeb1048384d4eed0dc7f1c18f054613231bb5d372eda5aad478ff78b099750b2b7a3d7536c5cb42d420889aaecb13a95559391b477606c771a033196fdbe17beda9e3072b156067f16a58d5dfa4bd971a9044577ac75e448154132a1243a7264d5fb813834e2b1f5e0c3ef2d0c413a6a771f4d666b68a2861306ade4975ee4caface65be73a440fc38c1c6dc23254e85a988bdb54d82472df6cab5002cad5377db941ee76813b2351bc150239a23954fe3f002744f6be9d699d120703d5ad5187909"], 0x18}, 0x1}, 0x0) r2 = syz_open_dev$usbmon(&(0x7f00000002c0)='/dev/usbmon#\x00', 0x4, 0x4000) fcntl$setflags(r0, 0x2, 0x1) getsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000000000), &(0x7f0000000080)=0x10) getsockname(r2, &(0x7f0000000340)=@nfc, &(0x7f00000003c0)=0x80) 04:53:38 executing program 7 (fault-call:7 fault-nth:8): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:38 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x5450, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:38 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") clock_nanosleep(0x6, 0x1, &(0x7f0000000140), &(0x7f0000000100)) 04:53:38 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10064) 04:53:38 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mmap(&(0x7f0000600000/0x4000)=nil, 0x4000, 0x0, 0x44031, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x800) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000240)={0xaa}) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f0000000200)={0x0, 0xfffffffffffffffb, 0x30, 0x7, 0x1}, &(0x7f00000002c0)=0x18) setsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000300)=@assoc_value={r2, 0x6}, 0x8) r3 = socket$inet(0x2, 0x0, 0x8000) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffff9c, 0x84, 0x6d, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYBLOB="68000800b894ae2cf38c65733c734b9a3307c105f4eb65b0ef7bd05728f2a96a1d326a5c4385133fbff05d672d5a78aaf9fa09936d08d60800cb3f4b2912434110b34d81409947f1e4d619b4c2484ed92c7761fcc6e13c89c4bc60b4348458276c3969baf6cd665c3d522906b74d985e0cfea5ac8ce5488801210604f9116000aeba8a77c69b7cdb3a42d5c0b18666eec107a077098d3f54ce5d12dff1a92614e4868d88bdc31c31fb7cbfcebbec640d0a16619f8187de2995b56deef40485953b508d29ee74bfa79c2294163250792780b0bc3a45c896b43025dcceb754d1610d8c9c"], &(0x7f00000000c0)=0x70) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x1f, &(0x7f0000000100)={r4, @in={{0x2, 0xffc0000000000000, @multicast1=0xe0000001}}, 0x6, 0x7}, &(0x7f00000001c0)=0x90) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000f8dfe0)={{&(0x7f00002a9000/0xc00000)=nil, 0xc00000}, 0x1}) r5 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x1, 0x0) ioctl$SNDRV_TIMER_IOCTL_STOP(r5, 0x54a1) 04:53:38 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:38 executing program 3: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f0000000280)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000000000)='./control/file0\x00') shmctl$IPC_RMID(0x0, 0x0) rmdir(&(0x7f00000000c0)='./control\x00') ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, &(0x7f0000000340)={{}, 0x1, 0x0, 0x0, {0xffffffff80000001, 0x81}}) syz_fuse_mount(&(0x7f0000000240)='./control\x00', 0x406000, 0x0, 0x0, 0x0, 0x0) close(r1) 04:53:38 executing program 2: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f0000000280)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000000000)='./control/file0\x00') shmctl$IPC_RMID(0x0, 0x0) rmdir(&(0x7f00000000c0)='./control\x00') ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, &(0x7f0000000340)={{}, 0x1, 0x0, 0x0, {0xffffffff80000001, 0x81}}) syz_fuse_mount(&(0x7f0000000240)='./control\x00', 0x406000, 0x0, 0x0, 0x0, 0x0) close(r1) [ 208.646855] FAULT_INJECTION: forcing a failure. [ 208.646855] name failslab, interval 1, probability 0, space 0, times 0 [ 208.658219] CPU: 0 PID: 13943 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 208.666619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 208.675970] Call Trace: [ 208.678571] dump_stack+0x1c9/0x2b4 [ 208.682206] ? dump_stack_print_info.cold.2+0x52/0x52 [ 208.687402] ? ip_fragment.constprop.49+0x240/0x240 [ 208.692427] ? sock_alloc_send_skb+0x40/0x40 [ 208.696839] should_fail.cold.4+0xa/0x11 [ 208.700903] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 208.706011] ? lock_acquire+0x1e4/0x540 [ 208.709985] ? is_bpf_text_address+0xae/0x170 [ 208.714485] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 208.719243] ? lock_acquire+0x1e4/0x540 [ 208.723217] ? is_bpf_text_address+0xae/0x170 [ 208.727889] ? lock_downgrade+0x8f0/0x8f0 [ 208.732037] ? lock_release+0xa30/0xa30 [ 208.736037] ? kasan_check_read+0x11/0x20 [ 208.740196] ? rcu_is_watching+0x8c/0x150 [ 208.744371] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 208.749041] ? is_bpf_text_address+0xd7/0x170 [ 208.753552] __should_failslab+0x124/0x180 [ 208.757794] should_failslab+0x9/0x14 [ 208.761596] kmem_cache_alloc_node+0x56/0x780 [ 208.766092] __alloc_skb+0x119/0x790 [ 208.769905] ? skb_scrub_packet+0x490/0x490 [ 208.774219] ? __kfree_skb+0x1d/0x20 [ 208.777927] ? tcp_rcv_state_process+0x1486/0x4fff [ 208.782844] ? tcp_v4_do_rcv+0x367/0x8f0 [ 208.786998] ? __release_sock+0x12f/0x3a0 [ 208.791233] ? release_sock+0xad/0x2c0 [ 208.795118] ? __inet_stream_connect+0x61f/0x1150 [ 208.799963] ? tcp_sendmsg_locked+0x2882/0x3f10 [ 208.804629] ? tcp_sendmsg+0x2f/0x50 [ 208.808326] ? inet_sendmsg+0x1a1/0x690 [ 208.812287] ? sock_sendmsg+0xd5/0x120 [ 208.816159] ? __sys_sendto+0x3d7/0x670 [ 208.820126] ? __x64_sys_sendto+0xe1/0x1a0 [ 208.824357] ? do_syscall_64+0x1b9/0x820 [ 208.828406] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 208.833756] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 208.838325] ? kasan_check_write+0x14/0x20 [ 208.842558] ? do_raw_spin_lock+0xc1/0x200 [ 208.846794] ? tcp_vegas_state+0x1d0/0x1d0 [ 208.851018] tcp_send_ack+0x11d/0x690 [ 208.854809] tcp_send_challenge_ack.isra.55+0x3f2/0x480 [ 208.860157] ? tcp_collapse_one+0x1e0/0x1e0 [ 208.864465] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 208.869654] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 208.875201] ? tcp_parse_options+0x1c1/0xe30 [ 208.879600] tcp_validate_incoming+0x578/0x16a0 [ 208.884253] ? sched_clock+0x31/0x40 [ 208.887961] tcp_rcv_state_process+0xc2d/0x4fff [ 208.892628] ? tcp_finish_connect+0x520/0x520 [ 208.897112] ? lock_acquire+0x1e4/0x540 [ 208.901075] ? __release_sock+0xcb/0x3a0 [ 208.905123] ? lock_downgrade+0x8f0/0x8f0 [ 208.909266] ? kasan_check_read+0x11/0x20 [ 208.913405] ? do_raw_spin_unlock+0xa7/0x2f0 [ 208.918151] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 208.922732] tcp_v4_do_rcv+0x367/0x8f0 [ 208.926602] ? tcp_v4_do_rcv+0x367/0x8f0 [ 208.930665] __release_sock+0x12f/0x3a0 [ 208.934642] release_sock+0xad/0x2c0 [ 208.938348] ? __release_sock+0x3a0/0x3a0 [ 208.942494] ? lock_acquire+0x1e4/0x540 [ 208.946452] __inet_stream_connect+0x61f/0x1150 [ 208.951106] ? inet_dgram_connect+0x2e0/0x2e0 [ 208.955593] ? __init_waitqueue_head+0x150/0x150 [ 208.960339] ? kasan_kmalloc+0xc4/0xe0 [ 208.964222] ? kmem_cache_alloc_trace+0x318/0x780 [ 208.969049] ? set_next_entity+0x2eb/0xc70 [ 208.973273] tcp_sendmsg_locked+0x2882/0x3f10 [ 208.977754] ? lock_acquire+0x1e4/0x540 [ 208.981712] ? lock_downgrade+0x8f0/0x8f0 [ 208.985845] ? lock_acquire+0x1e4/0x540 [ 208.989815] ? tcp_sendpage+0x60/0x60 [ 208.993615] ? __fget+0x4d5/0x740 [ 208.997056] ? _parse_integer+0x190/0x190 [ 209.001202] ? lock_acquire+0x1e4/0x540 [ 209.005162] ? tcp_sendmsg+0x21/0x50 [ 209.008861] ? lock_release+0xa30/0xa30 [ 209.012819] ? kasan_check_read+0x11/0x20 [ 209.016954] ? do_raw_spin_unlock+0xa7/0x2f0 [ 209.021345] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 209.025912] ? kasan_check_write+0x14/0x20 [ 209.030136] ? lock_sock_nested+0x9f/0x120 [ 209.034354] ? trace_hardirqs_on+0xd/0x10 [ 209.038663] ? __local_bh_enable_ip+0x161/0x230 [ 209.043317] tcp_sendmsg+0x2f/0x50 [ 209.046930] inet_sendmsg+0x1a1/0x690 [ 209.050717] ? ipip_gro_receive+0x100/0x100 [ 209.055028] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 209.060560] ? security_socket_sendmsg+0x94/0xc0 [ 209.065300] ? ipip_gro_receive+0x100/0x100 [ 209.069622] sock_sendmsg+0xd5/0x120 [ 209.073322] __sys_sendto+0x3d7/0x670 [ 209.077113] ? __ia32_sys_getpeername+0xb0/0xb0 [ 209.081768] ? vfs_write+0x2f3/0x560 [ 209.085470] ? wait_for_completion+0x8d0/0x8d0 [ 209.090057] ? lock_release+0xa30/0xa30 [ 209.094023] ? retint_kernel+0x10/0x10 [ 209.097897] ? fsnotify_first_mark+0x350/0x350 [ 209.102464] ? __fsnotify_parent+0xcc/0x420 [ 209.106770] ? fsnotify+0x14e0/0x14e0 [ 209.110559] ? __sb_end_write+0xac/0xe0 [ 209.114518] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 209.120041] ? fput+0x130/0x1a0 [ 209.123303] ? ksys_write+0x1ae/0x260 [ 209.127091] ? __ia32_sys_read+0xb0/0xb0 [ 209.131149] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 209.136688] __x64_sys_sendto+0xe1/0x1a0 [ 209.140738] do_syscall_64+0x1b9/0x820 [ 209.144616] ? syscall_return_slowpath+0x5e0/0x5e0 [ 209.149530] ? syscall_return_slowpath+0x31d/0x5e0 [ 209.154443] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 209.159459] ? prepare_exit_to_usermode+0x291/0x3b0 [ 209.164461] ? perf_trace_sys_enter+0xb10/0xb10 [ 209.169201] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 209.174033] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 209.179207] RIP: 0033:0x455e29 [ 209.182377] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 209.202107] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 209.209806] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 209.217060] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 209.224324] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 209.231586] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 209.238841] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 0000000000000008 04:53:39 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x62000, 0x0) syz_emit_ethernet(0xd, &(0x7f0000000500)=ANY=[@ANYBLOB="d187a3adb58baaaaaaaaaabb86dd60093a0600080000fe8000020000000000000000000000bbff0200000000000000000000000000010000000000089078"], &(0x7f0000000100)) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000001c00)=0x401, 0x4) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={0x0, 0x7}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000140)={r1, @in6={{0xa, 0x4e24, 0x4, @loopback={0x0, 0x1}, 0x1}}, 0x0, 0xfff}, &(0x7f00000000c0)=0x90) sendmsg$rds(r0, &(0x7f0000001bc0)={&(0x7f0000000200)={0x2, 0x4e22, @multicast1=0xe0000001}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000240)=""/13, 0xd}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000000280)=""/231, 0xe7}, {&(0x7f0000000380)=""/124, 0x7c}, {&(0x7f0000000400)=""/51, 0x33}], 0x5, &(0x7f0000001940)=[@mask_fadd={0x58, 0x114, 0x8, {{0x2f, 0x6}, &(0x7f00000004c0)=0x7, &(0x7f0000001540)=0x6, 0x3, 0x5, 0x7, 0x8, 0x40, 0x9}}, @mask_fadd={0x58, 0x114, 0x8, {{0x0, 0x1}, &(0x7f0000001580), &(0x7f00000015c0)=0x975c, 0x0, 0xf3c, 0x4, 0x98, 0x8, 0xff}}, @mask_fadd={0x58, 0x114, 0x8, {{0x800, 0x1}, &(0x7f0000001600)=0x80, &(0x7f0000001640)=0xffffffffffffff7f, 0xd60, 0xd0b0, 0x5, 0xa7, 0x39, 0x9}}, @cswp={0x58, 0x114, 0x7, {{0x8, 0x7}, &(0x7f0000001680)=0x2, &(0x7f00000016c0)=0x1, 0x4, 0x0, 0xfff, 0x3424bfe5, 0x40, 0x20}}, @fadd={0x58, 0x114, 0x6, {{0x9, 0x2}, &(0x7f0000001700), &(0x7f0000001740)=0xe0000000, 0x200, 0x4, 0xfa6, 0x0, 0x2, 0x7}}, @fadd={0x58, 0x114, 0x6, {{0xfff}, &(0x7f0000001780), &(0x7f00000017c0)=0x2, 0x80, 0x8f4, 0x5, 0x20, 0x24, 0xfffffffffffffffa}}, @rdma_args={0x48, 0x114, 0x1, {{0xb, 0x6}, {&(0x7f0000001800)=""/165, 0xa5}, &(0x7f0000001900)=[{&(0x7f00000018c0)=""/27, 0x1b}], 0x1, 0x10, 0x1f}}, @zcopy_cookie={0x18, 0x114, 0xc, 0x101}], 0x270, 0x4}, 0x20000000) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000001c40)={r1, 0x100000001, 0x10}, 0xc) ioctl$FICLONE(r0, 0x40049409, r0) 04:53:39 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10010) 04:53:39 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) syz_fuse_mount(&(0x7f0000000000)='./file0\x00', 0x4002, 0x0, 0x0, 0x0, 0x0) utimes(&(0x7f0000000200)='./file0\x00', &(0x7f0000000180)={{0x77359400}}) utime(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)) clone(0x0, &(0x7f0000000700), &(0x7f00000001c0), &(0x7f00000000c0), &(0x7f0000000400)) umount2(&(0x7f0000000580)='./file0\x00', 0x3) 04:53:39 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x5000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:39 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x2000, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000040)={{0x8c1}, 'port0\x00', 0x9c, 0x1000, 0x1, 0x7a7f, 0x45, 0x7, 0x1, 0x0, 0x2, 0x7}) r2 = socket$inet(0x10, 0x3, 0x8) sendmsg(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000880)="24000000360007031dfffd946fa2830020200a0009000300001d85680c1ba3a20400ff7e280000001100ffffba16a0aa1c0009b3ebea8653b1cc7e63975c0ac47b6268e3966cf055d90f15a3", 0x4c}], 0x1}, 0x0) 04:53:39 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x2, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:39 executing program 7 (fault-call:7 fault-nth:9): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:39 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key(&(0x7f0000000040)='encrypted\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000c80)='R', 0x1, 0xfffffffffffffffd) r1 = accept(r0, &(0x7f0000000200)=@pppoe={0x0, 0x0, {0x0, @remote}}, &(0x7f0000000140)=0x80) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000000280)) r2 = getpid() perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x6, 0xfffffffffffff000, 0x100000000, 0x2, 0x0, 0xcfa, 0x0, 0x8, 0x3, 0x101, 0x7, 0xffffffff, 0x6, 0x7, 0x6, 0x3, 0x4, 0x3, 0xfffff80000000000, 0x100000000, 0x7, 0x0, 0x5, 0x8, 0x1, 0x100000001, 0xbc6, 0xfff, 0x753, 0x1, 0x7ff, 0x2, 0x4, 0x6b, 0x0, 0xb7, 0x0, 0xd72, 0x3, @perf_bp={&(0x7f0000000080), 0x4}, 0x411, 0xfff, 0x6, 0x4, 0x5, 0x6, 0x8}, r2, 0x4, r0, 0x0) 04:53:39 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10018) [ 209.567123] FAULT_INJECTION: forcing a failure. [ 209.567123] name failslab, interval 1, probability 0, space 0, times 0 [ 209.578516] CPU: 0 PID: 13992 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 209.586923] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 209.596267] Call Trace: [ 209.598869] dump_stack+0x1c9/0x2b4 [ 209.602490] ? dump_stack_print_info.cold.2+0x52/0x52 [ 209.607691] should_fail.cold.4+0xa/0x11 [ 209.611743] ? __kernel_text_address+0xd/0x40 [ 209.616223] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 209.621312] ? __save_stack_trace+0x8d/0xf0 [ 209.625629] ? save_stack+0xa9/0xd0 [ 209.629239] ? save_stack+0x43/0xd0 [ 209.632850] ? kasan_kmalloc+0xc4/0xe0 [ 209.636719] ? kasan_slab_alloc+0x12/0x20 [ 209.640852] ? kmem_cache_alloc_node+0x144/0x780 [ 209.645592] ? __alloc_skb+0x119/0x790 [ 209.649463] ? tcp_send_ack+0x11d/0x690 [ 209.653423] ? tcp_send_challenge_ack.isra.55+0x3f2/0x480 [ 209.659376] ? tcp_validate_incoming+0x578/0x16a0 [ 209.664203] ? tcp_rcv_state_process+0xc2d/0x4fff [ 209.669030] ? tcp_v4_do_rcv+0x367/0x8f0 [ 209.673080] ? __release_sock+0x12f/0x3a0 [ 209.677213] ? release_sock+0xad/0x2c0 [ 209.681111] ? __inet_stream_connect+0x61f/0x1150 [ 209.685941] ? tcp_sendmsg_locked+0x2882/0x3f10 [ 209.690594] ? tcp_sendmsg+0x2f/0x50 [ 209.694294] ? inet_sendmsg+0x1a1/0x690 [ 209.698266] ? sock_sendmsg+0xd5/0x120 [ 209.702143] ? __sys_sendto+0x3d7/0x670 [ 209.706105] ? __x64_sys_sendto+0xe1/0x1a0 [ 209.710327] ? do_syscall_64+0x1b9/0x820 [ 209.714385] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 209.719836] ? lock_acquire+0x1e4/0x540 [ 209.723803] ? is_bpf_text_address+0xae/0x170 [ 209.728297] ? lock_downgrade+0x8f0/0x8f0 [ 209.732431] ? lock_release+0xa30/0xa30 [ 209.736398] ? trace_hardirqs_on+0x10/0x10 [ 209.740619] __should_failslab+0x124/0x180 [ 209.744853] should_failslab+0x9/0x14 [ 209.748641] kmem_cache_alloc_node_trace+0x5a/0x770 [ 209.753641] ? kasan_kmalloc+0xc4/0xe0 [ 209.757516] __kmalloc_node_track_caller+0x33/0x70 [ 209.762444] __kmalloc_reserve.isra.41+0x3a/0xe0 [ 209.767183] __alloc_skb+0x155/0x790 [ 209.770884] ? skb_scrub_packet+0x490/0x490 [ 209.775202] ? cpuacct_charge+0x30a/0x5d0 [ 209.779336] ? cgroup_rstat_updated+0xe6/0x470 [ 209.783916] ? __sys_sendto+0x3d7/0x670 [ 209.787875] ? __x64_sys_sendto+0xe1/0x1a0 [ 209.792099] ? update_curr+0x4e7/0xc00 [ 209.795984] ? do_raw_spin_lock+0xc1/0x200 [ 209.800209] ? tcp_vegas_state+0x1d0/0x1d0 [ 209.804428] tcp_send_ack+0x11d/0x690 [ 209.808222] tcp_send_challenge_ack.isra.55+0x3f2/0x480 [ 209.813571] ? tcp_collapse_one+0x1e0/0x1e0 [ 209.817878] ? compat_start_thread+0x80/0x80 [ 209.822274] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 209.827447] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 209.832967] ? tcp_parse_options+0x1c1/0xe30 [ 209.837360] tcp_validate_incoming+0x578/0x16a0 [ 209.842026] ? sched_clock+0x31/0x40 [ 209.845738] tcp_rcv_state_process+0xc2d/0x4fff [ 209.850397] ? tcp_finish_connect+0x520/0x520 [ 209.854880] ? __sched_text_start+0x8/0x8 [ 209.859028] ? lock_acquire+0x1e4/0x540 [ 209.862998] ? __release_sock+0xcb/0x3a0 [ 209.867052] ? lock_downgrade+0x8f0/0x8f0 [ 209.871199] ? kasan_check_read+0x11/0x20 [ 209.875679] ? do_raw_spin_unlock+0xa7/0x2f0 [ 209.880096] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 209.886669] tcp_v4_do_rcv+0x367/0x8f0 [ 209.890545] ? tcp_v4_do_rcv+0x367/0x8f0 [ 209.894594] __release_sock+0x12f/0x3a0 [ 209.898555] release_sock+0xad/0x2c0 [ 209.902251] ? __release_sock+0x3a0/0x3a0 [ 209.906396] ? lock_acquire+0x1e4/0x540 [ 209.910357] __inet_stream_connect+0x61f/0x1150 [ 209.915015] ? inet_dgram_connect+0x2e0/0x2e0 [ 209.919493] ? __init_waitqueue_head+0x150/0x150 [ 209.924238] ? kasan_kmalloc+0xc4/0xe0 [ 209.928168] ? kmem_cache_alloc_trace+0x318/0x780 [ 209.933001] tcp_sendmsg_locked+0x2882/0x3f10 [ 209.937485] ? lock_acquire+0x1e4/0x540 [ 209.941444] ? lock_downgrade+0x8f0/0x8f0 [ 209.945578] ? lock_acquire+0x1e4/0x540 [ 209.949536] ? tcp_sendpage+0x60/0x60 [ 209.953322] ? __fget+0x4d5/0x740 [ 209.956761] ? _parse_integer+0x190/0x190 [ 209.960897] ? lock_acquire+0x1e4/0x540 [ 209.964871] ? tcp_sendmsg+0x21/0x50 [ 209.968585] ? lock_release+0xa30/0xa30 [ 209.972559] ? kasan_check_read+0x11/0x20 [ 209.976691] ? do_raw_spin_unlock+0xa7/0x2f0 [ 209.981096] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 209.985841] ? kasan_check_write+0x14/0x20 [ 209.990066] ? lock_sock_nested+0x9f/0x120 [ 209.994284] ? trace_hardirqs_on+0xd/0x10 [ 209.998415] ? __local_bh_enable_ip+0x161/0x230 [ 210.003072] tcp_sendmsg+0x2f/0x50 [ 210.006598] inet_sendmsg+0x1a1/0x690 [ 210.010386] ? ipip_gro_receive+0x100/0x100 [ 210.014693] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 210.020216] ? security_socket_sendmsg+0x94/0xc0 [ 210.024954] ? ipip_gro_receive+0x100/0x100 [ 210.029260] sock_sendmsg+0xd5/0x120 [ 210.032973] __sys_sendto+0x3d7/0x670 [ 210.036789] ? __ia32_sys_getpeername+0xb0/0xb0 [ 210.041460] ? vfs_write+0x2f3/0x560 [ 210.045164] ? wait_for_completion+0x8d0/0x8d0 [ 210.049729] ? lock_release+0xa30/0xa30 [ 210.053689] ? fsnotify_first_mark+0x350/0x350 [ 210.058254] ? __fsnotify_parent+0xcc/0x420 [ 210.062578] ? fsnotify+0x14e0/0x14e0 [ 210.066366] ? __sb_end_write+0xac/0xe0 [ 210.070337] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 210.075856] ? fput+0x130/0x1a0 [ 210.079136] ? ksys_write+0x1ae/0x260 [ 210.082922] ? __ia32_sys_read+0xb0/0xb0 [ 210.086967] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 210.092491] __x64_sys_sendto+0xe1/0x1a0 [ 210.096542] do_syscall_64+0x1b9/0x820 [ 210.100416] ? finish_task_switch+0x1d3/0x870 [ 210.104910] ? syscall_return_slowpath+0x5e0/0x5e0 [ 210.109825] ? syscall_return_slowpath+0x31d/0x5e0 [ 210.114753] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 210.119754] ? prepare_exit_to_usermode+0x291/0x3b0 [ 210.124844] ? perf_trace_sys_enter+0xb10/0xb10 [ 210.129500] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 210.134328] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 210.139504] RIP: 0033:0x455e29 [ 210.142675] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 210.161857] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c 04:53:40 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x4090ae82, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:40 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8d00, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 210.169635] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 210.176891] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 210.184156] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 210.191407] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 210.198663] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 0000000000000009 [ 210.301677] encrypted_key: insufficient parameters specified [ 210.309126] encrypted_key: insufficient parameters specified 04:53:40 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x1f000000) 04:53:40 executing program 5: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x5000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:40 executing program 3: r0 = perf_event_open(&(0x7f000001d000)={0x200000002, 0x70, 0x0, 0x108000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$getflags(r0, 0x401) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet_mreqsrc(r1, 0x0, 0x28, &(0x7f0000000080)={@multicast1=0xe0000001}, 0xc) 04:53:40 executing program 7 (fault-call:7 fault-nth:10): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:40 executing program 2: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f0000000280)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000000000)='./control/file0\x00') shmctl$IPC_RMID(0x0, 0x0) rmdir(&(0x7f00000000c0)='./control\x00') ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, &(0x7f0000000340)={{}, 0x1, 0x0, 0x0, {0xffffffff80000001, 0x81}}) syz_fuse_mount(&(0x7f0000000240)='./control\x00', 0x406000, 0x0, 0x0, 0x0, 0x0) close(r1) 04:53:40 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x6400000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:40 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x4048ae9b, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:40 executing program 1: r0 = socket$inet(0x10, 0x3, 0xc) sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000000b07031dfffd946fa2830020200a0009000100001d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x1000, @mcast1={0xff, 0x1, [], 0x1}, 0x3}, 0x1c) getsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000080)={@local, @loopback}, &(0x7f00000000c0)=0xc) r1 = dup(r0) ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000100)) 04:53:40 executing program 3: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000180)={0x80000000000000ad}, &(0x7f0000000100)=0x4) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1) socketpair$inet6(0xa, 0xa, 0x9, &(0x7f0000003300)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000280)={0x0, @in={{0x2, 0x4e23}}}, &(0x7f0000000080)=0x84) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000140)={r3, 0x7}, &(0x7f00000001c0)=0x8) r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x202, 0x0) ioctl$TUNSETVNETHDRSZ(r4, 0x400454d8, &(0x7f0000000040)=0x40) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f0000003340), &(0x7f0000003380)=0x4) 04:53:40 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) listen(r0, 0xffefffffffffff7f) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r1, &(0x7f0000e33fe0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) shutdown(r1, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x6, 0x10000) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000040)={0x5774, 0x2}, 0x4) [ 210.542849] FAULT_INJECTION: forcing a failure. [ 210.542849] name failslab, interval 1, probability 0, space 0, times 0 [ 210.554183] CPU: 0 PID: 14045 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 210.562597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 210.571954] Call Trace: [ 210.574561] dump_stack+0x1c9/0x2b4 [ 210.578212] ? dump_stack_print_info.cold.2+0x52/0x52 [ 210.583420] ? trace_hardirqs_on+0x10/0x10 [ 210.587653] ? sched_clock+0x31/0x40 [ 210.591357] should_fail.cold.4+0xa/0x11 [ 210.595421] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 210.600560] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 210.606090] ? tcp_ack_update_rtt.isra.41+0x1030/0x1030 [ 210.611445] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 210.616452] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 210.621206] ? lock_acquire+0x1e4/0x540 [ 210.625170] ? is_bpf_text_address+0xae/0x170 [ 210.629668] ? lock_downgrade+0x8f0/0x8f0 [ 210.633836] ? lock_release+0xa30/0xa30 [ 210.637819] ? lock_acquire+0x1e4/0x540 [ 210.641813] ? fs_reclaim_acquire+0x20/0x20 [ 210.646130] ? lock_downgrade+0x8f0/0x8f0 [ 210.650269] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 210.654945] ? check_same_owner+0x340/0x340 [ 210.659272] ? rcu_note_context_switch+0x730/0x730 [ 210.664207] ? __kernel_text_address+0xd/0x40 [ 210.668701] __should_failslab+0x124/0x180 [ 210.672948] should_failslab+0x9/0x14 [ 210.676758] kmem_cache_alloc_node+0x272/0x780 [ 210.681333] __alloc_skb+0x119/0x790 [ 210.685040] ? kasan_slab_free+0xe/0x10 [ 210.689026] ? skb_scrub_packet+0x490/0x490 [ 210.693349] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 210.698877] ? tcp_established_options+0x374/0x5c0 [ 210.703800] ? tcp_select_initial_window+0x3a0/0x3a0 [ 210.708888] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 210.713459] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 210.718461] ? tcp_current_mss+0x2ac/0x410 [ 210.722680] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 210.726835] sk_stream_alloc_skb+0x141/0x970 [ 210.731228] ? tcp_init_transfer+0x470/0x470 [ 210.735629] ? tcp_rate_check_app_limited+0x121/0x470 [ 210.740828] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 210.746440] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 210.751458] tcp_sendmsg_locked+0xeaf/0x3f10 [ 210.755866] ? lock_acquire+0x1e4/0x540 [ 210.759833] ? lock_downgrade+0x8f0/0x8f0 [ 210.763979] ? tcp_sendpage+0x60/0x60 [ 210.767788] ? __fget+0x4d5/0x740 [ 210.771229] ? _parse_integer+0x190/0x190 [ 210.775365] ? lock_acquire+0x1e4/0x540 [ 210.779326] ? tcp_sendmsg+0x21/0x50 [ 210.783048] ? lock_release+0xa30/0xa30 [ 210.787032] ? kasan_check_read+0x11/0x20 [ 210.791177] ? do_raw_spin_unlock+0xa7/0x2f0 [ 210.795597] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 210.800189] ? kasan_check_write+0x14/0x20 [ 210.804433] ? lock_sock_nested+0x9f/0x120 [ 210.808664] ? trace_hardirqs_on+0xd/0x10 [ 210.812812] ? __local_bh_enable_ip+0x161/0x230 [ 210.817485] tcp_sendmsg+0x2f/0x50 [ 210.821023] inet_sendmsg+0x1a1/0x690 [ 210.824814] ? ipip_gro_receive+0x100/0x100 [ 210.829132] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 210.834653] ? security_socket_sendmsg+0x94/0xc0 [ 210.839391] ? ipip_gro_receive+0x100/0x100 [ 210.843719] sock_sendmsg+0xd5/0x120 [ 210.847426] __sys_sendto+0x3d7/0x670 [ 210.851221] ? __ia32_sys_getpeername+0xb0/0xb0 [ 210.855881] ? vfs_write+0x2f3/0x560 [ 210.859601] ? wait_for_completion+0x8d0/0x8d0 [ 210.864188] ? lock_release+0xa30/0xa30 [ 210.868150] ? fsnotify_first_mark+0x350/0x350 [ 210.872714] ? __fsnotify_parent+0xcc/0x420 [ 210.877026] ? fsnotify+0x14e0/0x14e0 [ 210.880831] ? __sb_end_write+0xac/0xe0 [ 210.884793] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 210.890320] ? fput+0x130/0x1a0 [ 210.893584] ? ksys_write+0x1ae/0x260 [ 210.897378] ? __ia32_sys_read+0xb0/0xb0 [ 210.901443] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 210.906977] __x64_sys_sendto+0xe1/0x1a0 [ 210.911049] do_syscall_64+0x1b9/0x820 [ 210.914926] ? finish_task_switch+0x1d3/0x870 [ 210.919427] ? syscall_return_slowpath+0x5e0/0x5e0 [ 210.924364] ? syscall_return_slowpath+0x31d/0x5e0 [ 210.929286] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 210.934299] ? prepare_exit_to_usermode+0x291/0x3b0 [ 210.939319] ? perf_trace_sys_enter+0xb10/0xb10 [ 210.943979] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 210.948827] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 210.954014] RIP: 0033:0x455e29 [ 210.957199] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 210.976364] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 210.984083] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 04:53:40 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x1000f) [ 210.991338] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 210.998591] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 211.005853] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 211.013130] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 000000000000000a 04:53:41 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x4138ae84, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:41 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x780000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:41 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x3, 0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000100)={0x7, [0x200, 0x10000, 0x0, 0x3, 0x70, 0x80000001, 0x6]}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0xc208ae62, &(0x7f0000000000)) syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x2, 0x0) ioctl$KVM_GET_XSAVE(r1, 0x9000aea4, &(0x7f0000000180)) 04:53:41 executing program 3: r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e53fe8)={0xaa}) ioctl$UFFDIO_UNREGISTER(0xffffffffffffffff, 0xc020aa04, &(0x7f0000007ffc)={&(0x7f0000000000/0x2000)=nil, 0x2000}) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_WAKE(r0, 0x8010aa02, &(0x7f0000000080)={&(0x7f0000ffb000/0x4000)=nil, 0x4000}) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x200, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000040)={@broadcast, @dev, 0x0}, &(0x7f00000000c0)=0xc) ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000100)={@loopback={0x0, 0x1}, 0x72, r2}) 04:53:41 executing program 7 (fault-call:7 fault-nth:11): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:41 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10f00) 04:53:41 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = gettid() capset(&(0x7f0000000040)={0x399f1736, r1}, &(0x7f0000000080)={0x4, 0x5a, 0x81, 0x4, 0x8, 0x2}) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f0000000000)) semop(0x0, &(0x7f0000000100)=[{}, {0x0, 0x8000}], 0x2) semop(0x0, &(0x7f0000000000)=[{0x0, 0x8001}], 0x1) r2 = dup2(r0, r0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r2, 0xc0505405, &(0x7f0000000140)={{0xffffffffffffffff, 0x1, 0x6, 0x1, 0x68c}, 0x81, 0x6, 0x7fff}) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r1, 0x1000000000016) 04:53:41 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) r2 = fcntl$getown(r0, 0x9) sched_setattr(r2, &(0x7f0000000040)={0x30, 0x7, 0x1, 0xb016, 0x6, 0x7f, 0x0, 0x1000}, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) r3 = syz_open_pts(r1, 0x0) ioctl$TCSETAF(r3, 0x402c542b, &(0x7f0000000000)) 04:53:41 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x40049409, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:41 executing program 2: r0 = getpid() sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x1}, 0x0) mkdir(&(0x7f000082f000)='./control\x00', 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000e4c000)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000043fe0)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = creat(&(0x7f0000000280)='./control/file0\x00', 0x0) write$sndseq(r2, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x77359400}}], 0x30) unlink(&(0x7f0000000000)='./control/file0\x00') shmctl$IPC_RMID(0x0, 0x0) rmdir(&(0x7f00000000c0)='./control\x00') ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, &(0x7f0000000340)={{}, 0x1, 0x0, 0x0, {0xffffffff80000001, 0x81}}) syz_fuse_mount(&(0x7f0000000240)='./control\x00', 0x406000, 0x0, 0x0, 0x0, 0x0) close(r1) 04:53:41 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x78, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:41 executing program 3: r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) ioctl$fiemap(r0, 0x40086602, &(0x7f0000000080)=ANY=[@ANYBLOB="fe2c3242d0a6f5f9e178b58876bce14c37a3b57d9ad8e8ba52e1cb8346586a9300dcfdd8a67cfcd1ee64bfa640b8f20f061f0b0048465c87dd140174824389bf9568ad60fce65acf1db4002dd04d79b9dcdc52f24c08edc0caf449a8ad5680bb39c9f66ffd8b173c8c482bd181132aa99d8009cfd524b1ee01289db69eccd2f01c5e83a6e8e9e6c2e332aa03a68fe376c96f91c6fda9343e7af70a6a86b8a8e470282f2f3956f3bd51d5c07f9f3632d38381d41e93c14137062130ea88d9764454955760e64d4b04d66c6ea088bb03f0792fb610f0895937725eb5d81d4e45b75c20e7b270b36b79"]) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)=0x0) syz_open_procfs(r1, &(0x7f0000000040)='net/rt_acct\x00') lstat(&(0x7f0000000740)='./file0\x00', &(0x7f0000000780)) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000180)='gretap0\x00') [ 211.525929] FAULT_INJECTION: forcing a failure. [ 211.525929] name failslab, interval 1, probability 0, space 0, times 0 [ 211.537409] CPU: 0 PID: 14116 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 211.545816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 211.555155] Call Trace: [ 211.557733] dump_stack+0x1c9/0x2b4 [ 211.561348] ? dump_stack_print_info.cold.2+0x52/0x52 [ 211.566540] should_fail.cold.4+0xa/0x11 [ 211.570597] ? __kernel_text_address+0xd/0x40 [ 211.575090] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 211.580179] ? __save_stack_trace+0x8d/0xf0 [ 211.584492] ? save_stack+0xa9/0xd0 [ 211.588110] ? save_stack+0x43/0xd0 [ 211.591721] ? kasan_kmalloc+0xc4/0xe0 [ 211.595603] ? kasan_slab_alloc+0x12/0x20 [ 211.599734] ? kmem_cache_alloc_node+0x144/0x780 [ 211.604486] ? __alloc_skb+0x119/0x790 [ 211.608372] ? sk_stream_alloc_skb+0x141/0x970 [ 211.612940] ? tcp_sendmsg_locked+0xeaf/0x3f10 [ 211.617524] ? tcp_sendmsg+0x2f/0x50 [ 211.621228] ? inet_sendmsg+0x1a1/0x690 [ 211.625194] ? sock_sendmsg+0xd5/0x120 [ 211.629074] ? __sys_sendto+0x3d7/0x670 [ 211.633040] ? __x64_sys_sendto+0xe1/0x1a0 [ 211.637266] ? do_syscall_64+0x1b9/0x820 [ 211.641309] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 211.646665] ? lock_acquire+0x1e4/0x540 [ 211.650625] ? fs_reclaim_acquire+0x20/0x20 [ 211.654933] ? lock_downgrade+0x8f0/0x8f0 [ 211.659074] ? check_same_owner+0x340/0x340 [ 211.663380] ? lock_downgrade+0x8f0/0x8f0 [ 211.667513] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 211.672168] ? rcu_note_context_switch+0x730/0x730 [ 211.677082] __should_failslab+0x124/0x180 [ 211.681301] should_failslab+0x9/0x14 [ 211.685098] kmem_cache_alloc_node_trace+0x26f/0x770 [ 211.690197] ? kasan_kmalloc+0xc4/0xe0 [ 211.694077] __kmalloc_node_track_caller+0x33/0x70 [ 211.699006] __kmalloc_reserve.isra.41+0x3a/0xe0 [ 211.703765] __alloc_skb+0x155/0x790 [ 211.707469] ? kasan_slab_free+0xe/0x10 [ 211.711429] ? skb_scrub_packet+0x490/0x490 [ 211.715735] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 211.721258] ? tcp_established_options+0x374/0x5c0 [ 211.726174] ? tcp_select_initial_window+0x3a0/0x3a0 [ 211.731264] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 211.735846] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 211.740847] ? tcp_current_mss+0x2ac/0x410 [ 211.745081] ? tcp_mtu_to_mss+0x4e0/0x4e0 [ 211.749224] sk_stream_alloc_skb+0x141/0x970 [ 211.753627] ? tcp_init_transfer+0x470/0x470 [ 211.758027] ? tcp_rate_check_app_limited+0x121/0x470 [ 211.763209] ? tcp_fastopen_reset_cipher.cold.14+0x47/0x47 [ 211.768909] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 211.773914] tcp_sendmsg_locked+0xeaf/0x3f10 [ 211.778322] ? lock_acquire+0x1e4/0x540 [ 211.782279] ? lock_downgrade+0x8f0/0x8f0 [ 211.787210] ? tcp_sendpage+0x60/0x60 [ 211.790999] ? __fget+0x4d5/0x740 [ 211.794448] ? _parse_integer+0x190/0x190 [ 211.798588] ? lock_acquire+0x1e4/0x540 [ 211.802547] ? tcp_sendmsg+0x21/0x50 [ 211.806249] ? lock_release+0xa30/0xa30 [ 211.810222] ? kasan_check_read+0x11/0x20 [ 211.814364] ? do_raw_spin_unlock+0xa7/0x2f0 [ 211.818754] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 211.823332] ? kasan_check_write+0x14/0x20 [ 211.827561] ? lock_sock_nested+0x9f/0x120 [ 211.831794] ? trace_hardirqs_on+0xd/0x10 [ 211.835946] ? __local_bh_enable_ip+0x161/0x230 [ 211.840600] tcp_sendmsg+0x2f/0x50 [ 211.844134] inet_sendmsg+0x1a1/0x690 [ 211.847918] ? ipip_gro_receive+0x100/0x100 [ 211.852239] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 211.857760] ? security_socket_sendmsg+0x94/0xc0 [ 211.862508] ? ipip_gro_receive+0x100/0x100 [ 211.866816] sock_sendmsg+0xd5/0x120 [ 211.870530] __sys_sendto+0x3d7/0x670 [ 211.874961] ? __ia32_sys_getpeername+0xb0/0xb0 [ 211.879636] ? vfs_write+0x2f3/0x560 [ 211.883336] ? wait_for_completion+0x8d0/0x8d0 [ 211.887905] ? lock_release+0xa30/0xa30 [ 211.891885] ? fsnotify_first_mark+0x350/0x350 [ 211.896476] ? __fsnotify_parent+0xcc/0x420 [ 211.900785] ? fsnotify+0x14e0/0x14e0 [ 211.904575] ? __sb_end_write+0xac/0xe0 [ 211.908534] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 211.914057] ? fput+0x130/0x1a0 [ 211.917334] ? ksys_write+0x1ae/0x260 [ 211.921121] ? __ia32_sys_read+0xb0/0xb0 [ 211.925189] ? syscall_slow_exit_work+0x500/0x500 [ 211.930044] __x64_sys_sendto+0xe1/0x1a0 [ 211.934099] do_syscall_64+0x1b9/0x820 [ 211.937974] ? finish_task_switch+0x1d3/0x870 [ 211.942454] ? syscall_return_slowpath+0x5e0/0x5e0 [ 211.947369] ? syscall_return_slowpath+0x31d/0x5e0 [ 211.952284] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 211.957284] ? prepare_exit_to_usermode+0x291/0x3b0 [ 211.962295] ? perf_trace_sys_enter+0xb10/0xb10 [ 211.966954] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 211.971780] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 211.976963] RIP: 0033:0x455e29 [ 211.980134] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 211.999276] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 212.006983] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 212.014240] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 04:53:41 executing program 5: socketpair$inet6_udp(0xa, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000180), &(0x7f00000001c0)=0x4) prctl$setmm(0x23, 0xffffffffffffffff, &(0x7f0000ffe000/0x1000)=nil) dup3(r0, r0, 0x80000) userfaultfd(0x80800) socketpair(0x1b, 0x0, 0x9b, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) accept4$inet(r2, 0x0, &(0x7f0000000100), 0x80000) r4 = socket$inet6_dccp(0xa, 0x6, 0x0) r5 = accept(r4, &(0x7f0000000000)=@vsock, &(0x7f0000000080)=0x80) getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000280)={0x0, @empty, @remote}, &(0x7f00000002c0)=0xc) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'bond0\x00', r6}) [ 212.021492] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 212.028757] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 212.036023] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 000000000000000b 04:53:42 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={&(0x7f0000000040), &(0x7f0000000140)}}, &(0x7f0000044000)=0x0) r3 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r3, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) r4 = syz_open_procfs(r1, &(0x7f0000000000)='maps\x00') ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x2400, 0xffffffffffffffff) mmap(&(0x7f000092d000/0x400000)=nil, 0x400000, 0xfffffffffffffffc, 0x8972, 0xffffffffffffffff, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000134000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f00000e5000)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f00009322c4)={0x2, 0x4e20, @local={0xac, 0x14, 0xffffffffffffffff, 0xaa}}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) timer_settime(r2, 0x0, &(0x7f00000003c0)={{}, {0x0, 0x989680}}, &(0x7f0000000400)) r5 = dup2(r0, 0xffffffffffffffff) ppoll(&(0x7f0000000040)=[{r0, 0x4180}, {r3}, {r5, 0x500}, {r5, 0x2}, {r3, 0x8000}, {r0, 0x81}, {r3, 0x80}], 0x2276, &(0x7f00000000c0)={0x77359400}, &(0x7f0000000100)={0xffffffffffff0001}, 0x8) tkill(r1, 0x1000000000016) ioctl$VHOST_SET_VRING_ADDR(r4, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)=""/103, &(0x7f00000001c0)=""/65, &(0x7f00000002c0)=""/218, 0x3000}) 04:53:42 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xc0045878, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:42 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) ioctl$KVM_RUN(r0, 0xae80, 0x0) fallocate(r0, 0x8, 0x0, 0x10000) 04:53:42 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x1800, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:42 executing program 3: setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027f0000010000000001000000ac1414bb1baca1eb782a7e10e2800000000c5d59b35477622d84d46144446efbed9fd2e88935ef1ce1ddeac5f1e870b024b07cb8e8375c0ce3cecc0402e7c025912a381162d2e18bcc870b7c3956"], 0x14) r0 = syz_open_dev$mouse(&(0x7f0000000180)='/dev/input/mouse#\x00', 0x6, 0x901) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000300), &(0x7f0000000340)=0x4) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r1, 0xa10, 0x70bd27, 0x25dfdbfd, {0x2}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8de}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40800}, 0x40000) r2 = socket$nl_generic(0xa, 0x3, 0x10) getpeername(r2, &(0x7f0000000080)=@xdp, &(0x7f0000000100)=0x80) setsockopt$netlink_NETLINK_RX_RING(r2, 0x29, 0x6, &(0x7f0000000140)={0x14, 0xfffffffffffffffd, 0x1, 0x1e}, 0x10) 04:53:42 executing program 7 (fault-call:7 fault-nth:12): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:42 executing program 5: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000ec0)='/dev/null\x00', 0x1ebf4cff75535f09, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f0000000f00)={'HL\x00'}, &(0x7f0000000f40)=0x1e) socketpair$inet(0x2, 0x80007, 0x9, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_timeval(r1, 0x1, 0x15, &(0x7f0000000040), &(0x7f0000000bc0)=0x10) socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$EBT_SO_GET_INIT_ENTRIES(r2, 0x0, 0x83, &(0x7f0000000e00)={'broute\x00', 0x0, 0x3, 0xc4, [], 0x8, &(0x7f0000000c00)=[{}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000c80)=""/196}, &(0x7f0000000e80)=0x78) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f00000010c0)=@broute={'broute\x00', 0x20, 0x2, 0x4, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200000c0], 0x0, &(0x7f0000000080), &(0x7f0000000f80)=ANY=[@ANYRES32]}, 0x7c) write$eventfd(r0, &(0x7f00000000c0)=0xa9e5, 0x8) 04:53:42 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r0, &(0x7f0000000040)={0x2, 0x1, @multicast2=0xe0000002}, 0x10) fremovexattr(r0, &(0x7f0000000000)=@known='system.posix_acl_default\x00') r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x101080, 0x0) getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f00000002c0)={0x0, 0x1ff, 0x0, 0xffffffffffff4fcc, 0x1, 0x21b0, 0x7, 0x80, {0x0, @in={{0x2, 0x4e20, @multicast2=0xe0000002}}, 0x8, 0x1000000000000, 0x2000000000, 0x6, 0x2}}, &(0x7f0000000240)=0xb0) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000380)={r2, 0xcdc}, &(0x7f00000003c0)=0x8) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0xa4000, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000400)={0x16, 0x1, 0xffffffffffff941b}) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000180)={0x0, 0xfff, 0x5, 0x1ff}, &(0x7f00000001c0)=0x10) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, &(0x7f0000000080)=ANY=[@ANYRES32=r4, @ANYBLOB="72000000ca306bc831f2f005dc73739605a36c382eb49553298d7725badc293f835817f1579ad2b8901e20c717841b74e38f7af881f8d3c5feac862a949cf772783ef31e1f5786009bfd11d653f934f2c000b6b8ae1299b75e141e9c1eea565e71aebe04d0215ace82a11537f3174af02002fd3e59e01ebd51f440cffc3fff1352971d6d"], &(0x7f0000000280)=0x7a) [ 212.465775] FAULT_INJECTION: forcing a failure. [ 212.465775] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 212.477747] CPU: 1 PID: 14177 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 212.486155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 212.495513] Call Trace: [ 212.498117] dump_stack+0x1c9/0x2b4 [ 212.501760] ? dump_stack_print_info.cold.2+0x52/0x52 [ 212.506965] ? is_bpf_text_address+0xd7/0x170 [ 212.511477] should_fail.cold.4+0xa/0x11 [ 212.515555] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 212.520679] ? save_stack+0xa9/0xd0 [ 212.524319] ? trace_hardirqs_on+0x10/0x10 [ 212.528579] ? tcp_rcv_state_process+0xf8f/0x4fff [ 212.533438] ? tcp_v4_do_rcv+0x367/0x8f0 [ 212.537503] ? __release_sock+0x12f/0x3a0 [ 212.541638] ? release_sock+0xad/0x2c0 [ 212.545516] ? lock_acquire+0x1e4/0x540 [ 212.549475] ? fs_reclaim_acquire+0x20/0x20 [ 212.553793] ? lock_downgrade+0x8f0/0x8f0 [ 212.557936] ? trace_hardirqs_on+0x10/0x10 [ 212.562160] ? check_same_owner+0x340/0x340 [ 212.566466] ? trace_hardirqs_off+0xd/0x10 [ 212.570686] ? rcu_note_context_switch+0x730/0x730 [ 212.575604] ? debug_check_no_obj_freed+0x30b/0x595 [ 212.580623] __alloc_pages_nodemask+0x36e/0xdb0 [ 212.585279] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 212.590286] ? trace_hardirqs_on+0x10/0x10 [ 212.594510] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 212.599516] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 212.604519] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 212.609268] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 212.614792] alloc_pages_current+0x10c/0x210 [ 212.619187] pte_alloc_one+0x1b/0x1a0 [ 212.622977] __handle_mm_fault+0x36bb/0x4480 [ 212.627376] ? vmf_insert_mixed_mkwrite+0xa0/0xa0 [ 212.632213] ? lock_acquire+0x1e4/0x540 [ 212.636175] ? handle_mm_fault+0x417/0xc80 [ 212.640401] ? lock_downgrade+0x8f0/0x8f0 [ 212.644535] ? lock_release+0xa30/0xa30 [ 212.648496] ? lock_release+0xa30/0xa30 [ 212.652458] ? mem_cgroup_from_task+0xcb/0x1f0 [ 212.657025] ? mem_cgroup_css_online+0x3c0/0x3c0 [ 212.661782] handle_mm_fault+0x53e/0xc80 [ 212.665833] ? __handle_mm_fault+0x4480/0x4480 [ 212.670407] ? find_vma+0x34/0x190 [ 212.673937] __do_page_fault+0x620/0xe50 [ 212.678012] ? mm_fault_error+0x380/0x380 [ 212.682148] ? kasan_kmalloc+0xc4/0xe0 [ 212.686026] do_page_fault+0xf6/0x8c0 [ 212.689814] ? vmalloc_sync_all+0x30/0x30 [ 212.693950] ? __kmalloc_node_track_caller+0x47/0x70 [ 212.699040] ? kasan_check_write+0x14/0x20 [ 212.703273] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 212.708107] page_fault+0x1e/0x30 [ 212.711546] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20 [ 212.717581] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 [ 212.736757] RSP: 0018:ffff880194ccf5b0 EFLAGS: 00010202 [ 212.742105] RAX: 0000000000000000 RBX: 00000000000004a4 RCX: 00000000000004a4 [ 212.749359] RDX: 00000000000004a4 RSI: 0000000020a88f88 RDI: ffff880195040dd0 [ 212.756628] RBP: ffff880194ccf5e8 R08: ffffed0032a0824f R09: ffffed0032a0824f [ 212.763882] R10: ffffed0032a0824e R11: ffff880195041273 R12: 0000000020a8942c [ 212.771139] R13: 0000000020a88f88 R14: ffff880195040dd0 R15: 00007ffffffff000 [ 212.778410] ? copyin+0xe4/0x100 [ 212.781760] _copy_from_iter_full+0x267/0xd20 [ 212.786859] ? usercopy_warn+0x120/0x120 [ 212.790907] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 212.795908] ? tcp_rate_check_app_limited+0x121/0x470 [ 212.801086] ? iov_iter_advance+0x14e0/0x14e0 [ 212.805567] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 212.810568] ? skb_put+0x17b/0x1e0 [ 212.814096] tcp_sendmsg_locked+0x2d01/0x3f10 [ 212.818582] ? lock_acquire+0x1e4/0x540 [ 212.822546] ? tcp_sendpage+0x60/0x60 [ 212.826342] ? __fget+0x4d5/0x740 [ 212.829784] ? _parse_integer+0x190/0x190 [ 212.833917] ? lock_acquire+0x1e4/0x540 [ 212.837873] ? tcp_sendmsg+0x21/0x50 [ 212.841574] ? lock_release+0xa30/0xa30 [ 212.845533] ? kasan_check_read+0x11/0x20 [ 212.849662] ? do_raw_spin_unlock+0xa7/0x2f0 [ 212.854052] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 212.858616] ? kasan_check_write+0x14/0x20 [ 212.862832] ? lock_sock_nested+0x9f/0x120 [ 212.867052] ? trace_hardirqs_on+0xd/0x10 [ 212.871186] ? __local_bh_enable_ip+0x161/0x230 [ 212.876107] tcp_sendmsg+0x2f/0x50 [ 212.879629] inet_sendmsg+0x1a1/0x690 [ 212.883415] ? ipip_gro_receive+0x100/0x100 [ 212.887721] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 212.893243] ? security_socket_sendmsg+0x94/0xc0 [ 212.897980] ? ipip_gro_receive+0x100/0x100 [ 212.902297] sock_sendmsg+0xd5/0x120 [ 212.906008] __sys_sendto+0x3d7/0x670 [ 212.909795] ? __ia32_sys_getpeername+0xb0/0xb0 [ 212.914451] ? vfs_write+0x2f3/0x560 [ 212.918153] ? wait_for_completion+0x8d0/0x8d0 [ 212.922717] ? lock_release+0xa30/0xa30 [ 212.926678] ? fsnotify_first_mark+0x350/0x350 [ 212.931251] ? __fsnotify_parent+0xcc/0x420 [ 212.935563] ? fsnotify+0x14e0/0x14e0 [ 212.939350] ? __sb_end_write+0xac/0xe0 [ 212.943313] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 212.948841] ? fput+0x130/0x1a0 [ 212.952104] ? ksys_write+0x1ae/0x260 [ 212.955887] ? __ia32_sys_read+0xb0/0xb0 [ 212.959928] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 212.965452] __x64_sys_sendto+0xe1/0x1a0 [ 212.969497] do_syscall_64+0x1b9/0x820 [ 212.973369] ? finish_task_switch+0x1d3/0x870 [ 212.977852] ? syscall_return_slowpath+0x5e0/0x5e0 [ 212.982763] ? syscall_return_slowpath+0x31d/0x5e0 [ 212.987677] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 212.992679] ? prepare_exit_to_usermode+0x291/0x3b0 [ 212.997684] ? perf_trace_sys_enter+0xb10/0xb10 [ 213.002337] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 213.007173] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 213.012354] RIP: 0033:0x455e29 [ 213.015531] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 213.034699] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 213.042392] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 213.049641] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 213.056892] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 04:53:42 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x1, 0x0) fallocate(r0, 0x8, 0x0, 0x10000) 04:53:42 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xc018ae85, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:42 executing program 3: unshare(0x64000400) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x3, 0x0) accept4$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x2711, @any=0xffffffff}, 0x10, 0x80800) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000040)='bpq0\x00') 04:53:42 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x4000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 213.064142] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 213.071396] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 000000000000000c [ 213.122103] QAT: Invalid ioctl [ 213.131966] QAT: Invalid ioctl [ 213.150659] IPVS: ftp: loaded support on port[0] = 21 04:53:43 executing program 2: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x800, 0x0) write$cgroup_type(r1, &(0x7f00000000c0)='threaded\x00', 0x9) bind$vsock_dgram(r1, &(0x7f0000000080)={0x28, 0x0, 0x0, @reserved=0x1}, 0x10) setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000000000)=@dstopts, 0x1) 04:53:43 executing program 5: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0x0, 0x10000002) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r1, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) sendto$inet6(r2, &(0x7f0000000140), 0x0, 0x8000, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @mcast1={0xff, 0x1, [], 0x1}}, 0x1c) sendfile(r2, 0xffffffffffffffff, &(0x7f0000000100), 0x8001) write$binfmt_elf32(r2, &(0x7f0000000cc0)=ANY=[@ANYBLOB="7f454c4600000000000000000000000000000000000000000000000038000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x341) r3 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x1, 0x800) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000140)={0x68, 0x0, &(0x7f00000001c0)=[@register_looper={0x630b}, @exit_looper={0x630d}, @dead_binder_done={0x40086310, 0x3}, @decrefs={0x40046307, 0x2}, @reply_sg={0x40486312, {{0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, &(0x7f0000000040), &(0x7f0000000080)=[0x78, 0x0]}, 0xffff}}], 0x22, 0x0, &(0x7f00000000c0)="ea73fac5813872ee924e3e7e521a5618fb5d7c74433c412795431e598365dfae18f9"}) ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f0000000240)=0x0) write$P9_RGETLOCK(r3, &(0x7f00000002c0)={0x2b, 0x37, 0x1, {0x1, 0xdb74, 0xffffffff, r4, 0xd, '/dev/binder#\x00'}}, 0x2b) 04:53:43 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$RTC_EPOCH_SET(r1, 0x4008700e, 0x9) setsockopt$inet_buf(r0, 0x0, 0x10, &(0x7f0000258000)="17000000020001000003be8c5ee17688a3000008010100ec1fda1e0336030000000000000098fc5ad9485bbb6a8800000000dba67e0600000000000200df018000000000f5009cee4a5acb3da400001fb700670000c88ebbff0601150039010000000000000000000609edffffffffffff02df9eebe7ec7ee87cccebf6ba000840024f0298e9e90554062a80e605007f71174aa9512cbf320ec39f02d47c59cc16268b6026eb4bf6ba2112ce68bf17a6e019b7487067c12f", 0xb8) 04:53:43 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x1, 0xfffffffffffffffa, 0x10000) 04:53:43 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x64, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:43 executing program 7 (fault-call:7 fault-nth:13): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) [ 213.255339] binder: 14209:14216 ERROR: BC_REGISTER_LOOPER called without request [ 213.262987] binder: 14209:14216 BC_DEAD_BINDER_DONE 0000000000000003 not found [ 213.270432] binder: 14209:14216 DecRefs 0 refcount change on invalid ref 2 ret -22 [ 213.278179] binder: 14209:14216 got reply transaction with no transaction stack [ 213.285678] binder: 14209:14216 transaction failed 29201/-71, size 0-16 line 2759 04:53:43 executing program 1: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x4000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:43 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x5452, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:43 executing program 2: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000f56000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0xe, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1=0xe0000001}}, @sadb_x_policy={0x8, 0x12, 0x4, 0x0, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@multicast1=0xe0000001, @in6=@remote={0xfe, 0x80, [], 0xbb}}}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1=0xe0000001}}]}, 0x80}, 0x1}, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='io.stat\x00', 0x0, 0x0) ioctl$sock_bt_hci(r1, 0x400448de, &(0x7f0000000100)="b47aff394b39e32cff") r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x800, 0x0) faccessat(r2, &(0x7f0000000040)='./file0\x00', 0x10, 0x400) 04:53:43 executing program 3: r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x1f, 0x800) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@mcast1, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @multicast2}}, 0x0, @in6=@local}}, &(0x7f00000003c0)=0xe8) sendmsg$xdp(r0, &(0x7f0000000580)={&(0x7f0000000400)={0x2c, 0x1, r1, 0x37}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000440)="4e57670a27b19e59b61731ea3967dd66545b5f45163b5385926760cad02a03057cffff41a1f00cc0cba5ab7ee49214f6eade521ac5f192cd870cc480b3c9faa8d2c3922c4f74517d", 0x48}, {&(0x7f00000004c0)="6886139975369ad336", 0x9}, {&(0x7f0000000500)="94995f5e66212b7e6f40ec213474de7f362ebf", 0x13}], 0x3, 0x0, 0x0, 0x8051}, 0x48000) r2 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r2, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, &(0x7f00000000c0), 0x0) ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x3}]}) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 213.349256] binder: 14209:14216 ERROR: BC_REGISTER_LOOPER called without request [ 213.356896] binder: 14209:14216 BC_DEAD_BINDER_DONE 0000000000000003 not found [ 213.364307] binder: 14209:14216 DecRefs 0 refcount change on invalid ref 2 ret -22 [ 213.372066] binder: 14209:14216 got reply transaction with no transaction stack [ 213.379547] binder: 14209:14216 transaction failed 29201/-71, size 0-16 line 2759 [ 213.391367] binder: undelivered TRANSACTION_ERROR: 29201 04:53:43 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)="3596d3a5bd6fa4c7e626407570", 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000000)='io.max\x00', 0x2, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x829e, 0x2000) ioctl$SG_GET_SCSI_ID(r2, 0x2276, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000140)='\x00') ioctl$KDENABIO(r2, 0x4b36) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180), 0x106, 0x100b}}, 0x20) r3 = dup3(r1, r0, 0x0) write$RDMA_USER_CM_CMD_DISCONNECT(r3, &(0x7f0000000100)={0xa, 0x324, 0xfa00}, 0xc) [ 213.406835] binder: undelivered TRANSACTION_ERROR: 29201 [ 213.477396] FAULT_INJECTION: forcing a failure. [ 213.477396] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 213.489297] CPU: 0 PID: 14235 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 213.497702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 213.507057] Call Trace: [ 213.509662] dump_stack+0x1c9/0x2b4 [ 213.513300] ? dump_stack_print_info.cold.2+0x52/0x52 [ 213.518851] ? is_bpf_text_address+0xd7/0x170 [ 213.523357] should_fail.cold.4+0xa/0x11 [ 213.527416] ? rb_erase+0x3550/0x3550 [ 213.531218] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 213.536360] ? lock_acquire+0x1e4/0x540 [ 213.540351] ? cpuacct_charge+0x2eb/0x5d0 [ 213.544498] ? trace_hardirqs_on+0x10/0x10 [ 213.548729] ? lock_release+0xa30/0xa30 [ 213.552711] ? release_sock+0xad/0x2c0 [ 213.556605] ? lock_acquire+0x1e4/0x540 [ 213.560575] ? fs_reclaim_acquire+0x20/0x20 [ 213.564903] ? lock_downgrade+0x8f0/0x8f0 [ 213.569046] ? trace_hardirqs_on+0x10/0x10 [ 213.573293] ? check_same_owner+0x340/0x340 [ 213.577616] ? rcu_note_context_switch+0x730/0x730 [ 213.582554] ? debug_check_no_obj_freed+0x30b/0x595 [ 213.587573] __alloc_pages_nodemask+0x36e/0xdb0 [ 213.592247] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 213.597264] ? trace_hardirqs_on+0x10/0x10 [ 213.601505] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 213.606616] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 213.611630] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 213.616736] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 213.622274] alloc_pages_current+0x10c/0x210 [ 213.626684] pte_alloc_one+0x1b/0x1a0 [ 213.630485] __handle_mm_fault+0x36bb/0x4480 [ 213.634895] ? vmf_insert_mixed_mkwrite+0xa0/0xa0 [ 213.639745] ? lock_acquire+0x1e4/0x540 [ 213.643731] ? handle_mm_fault+0x417/0xc80 [ 213.647977] ? lock_downgrade+0x8f0/0x8f0 [ 213.652119] ? lock_release+0xa30/0xa30 [ 213.656094] ? lock_release+0xa30/0xa30 [ 213.660067] ? mem_cgroup_from_task+0xcb/0x1f0 [ 213.664645] ? mem_cgroup_css_online+0x3c0/0x3c0 [ 213.669402] handle_mm_fault+0x53e/0xc80 [ 213.673460] ? __handle_mm_fault+0x4480/0x4480 [ 213.678039] ? find_vma+0x34/0x190 [ 213.681577] __do_page_fault+0x620/0xe50 [ 213.685634] ? mm_fault_error+0x380/0x380 [ 213.689778] ? kasan_kmalloc+0xc4/0xe0 [ 213.693662] do_page_fault+0xf6/0x8c0 [ 213.697462] ? vmalloc_sync_all+0x30/0x30 [ 213.701608] ? __kmalloc_node_track_caller+0x47/0x70 [ 213.706708] ? kasan_check_write+0x14/0x20 [ 213.710944] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 213.715786] page_fault+0x1e/0x30 [ 213.719241] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20 [ 213.725111] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 [ 213.744381] RSP: 0018:ffff880198c175b0 EFLAGS: 00010202 [ 213.749743] RAX: 0000000000000000 RBX: 00000000000004a4 RCX: 00000000000004a4 [ 213.757003] RDX: 00000000000004a4 RSI: 0000000020a88f88 RDI: ffff8801b1df6450 [ 213.764265] RBP: ffff880198c175e8 R08: ffffed00363bed1f R09: ffffed00363bed1f [ 213.771527] R10: ffffed00363bed1e R11: ffff8801b1df68f3 R12: 0000000020a8942c [ 213.778790] R13: 0000000020a88f88 R14: ffff8801b1df6450 R15: 00007ffffffff000 [ 213.786077] ? copyin+0xe4/0x100 [ 213.789441] _copy_from_iter_full+0x267/0xd20 [ 213.793932] ? usercopy_warn+0x120/0x120 [ 213.797988] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 213.803003] ? tcp_rate_check_app_limited+0x121/0x470 [ 213.808189] ? iov_iter_advance+0x14e0/0x14e0 [ 213.812668] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 213.817665] ? skb_put+0x17b/0x1e0 [ 213.821189] tcp_sendmsg_locked+0x2d01/0x3f10 [ 213.825665] ? lock_acquire+0x1e4/0x540 [ 213.829639] ? tcp_sendpage+0x60/0x60 [ 213.833425] ? __fget+0x4d5/0x740 [ 213.836865] ? _parse_integer+0x190/0x190 [ 213.841004] ? lock_acquire+0x1e4/0x540 [ 213.845078] ? tcp_sendmsg+0x21/0x50 [ 213.848776] ? lock_release+0xa30/0xa30 [ 213.852730] ? kasan_check_read+0x11/0x20 [ 213.856872] ? do_raw_spin_unlock+0xa7/0x2f0 [ 213.861262] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 213.865832] ? kasan_check_write+0x14/0x20 [ 213.870077] ? lock_sock_nested+0x9f/0x120 [ 213.874295] ? trace_hardirqs_on+0xd/0x10 [ 213.878427] ? __local_bh_enable_ip+0x161/0x230 [ 213.883079] tcp_sendmsg+0x2f/0x50 [ 213.886607] inet_sendmsg+0x1a1/0x690 [ 213.890392] ? ipip_gro_receive+0x100/0x100 [ 213.894697] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 213.900217] ? security_socket_sendmsg+0x94/0xc0 [ 213.904952] ? ipip_gro_receive+0x100/0x100 [ 213.909254] sock_sendmsg+0xd5/0x120 [ 213.912952] __sys_sendto+0x3d7/0x670 [ 213.916739] ? __ia32_sys_getpeername+0xb0/0xb0 [ 213.921400] ? vfs_write+0x2f3/0x560 [ 213.925097] ? wait_for_completion+0x8d0/0x8d0 [ 213.929661] ? lock_release+0xa30/0xa30 [ 213.933618] ? fsnotify_first_mark+0x350/0x350 [ 213.938181] ? __fsnotify_parent+0xcc/0x420 [ 213.942483] ? fsnotify+0x14e0/0x14e0 [ 213.946269] ? __sb_end_write+0xac/0xe0 [ 213.950232] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 213.955746] ? fput+0x130/0x1a0 [ 213.959006] ? ksys_write+0x1ae/0x260 [ 213.962813] ? __ia32_sys_read+0xb0/0xb0 [ 213.966865] ? syscall_slow_exit_work+0x500/0x500 [ 213.971826] __x64_sys_sendto+0xe1/0x1a0 [ 213.975882] do_syscall_64+0x1b9/0x820 [ 213.979762] ? finish_task_switch+0x1d3/0x870 [ 213.984239] ? syscall_return_slowpath+0x5e0/0x5e0 [ 213.989150] ? syscall_return_slowpath+0x31d/0x5e0 [ 213.994061] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 213.999060] ? prepare_exit_to_usermode+0x291/0x3b0 [ 214.004068] ? perf_trace_sys_enter+0xb10/0xb10 [ 214.008724] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 214.013564] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 214.018743] RIP: 0033:0x455e29 [ 214.021909] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 214.041068] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 214.048771] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 214.056027] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 214.063313] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 [ 214.070575] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 214.077835] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 000000000000000d 04:53:44 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x12, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) 04:53:44 executing program 0: socketpair$inet6_icmp_raw(0xa, 0x3, 0x3a, &(0x7f00000000c0)={0xffffffffffffffff}) flistxattr(r0, &(0x7f0000000100)=""/135, 0x87) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x100000000000, 0x8000011) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000080)={&(0x7f0000000040)='./file0\x00', r1}, 0x10) fallocate(r1, 0x8, 0x0, 0x10000) 04:53:44 executing program 2: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r1, 0x29, 0x40000001b, &(0x7f0000000000)={@remote={0xfe, 0x80, [], 0xbb}}, 0x14) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000200)={@dev={0xfe, 0x80}}, 0x14) sendmsg(r1, &(0x7f00000000c0)={&(0x7f0000000040)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x4, 0x1, 0x0, 0x0, {0xa, 0x4e20, 0x7, @ipv4={[], [0xff, 0xff]}, 0x4}}}, 0x80, &(0x7f0000003580)=[{&(0x7f00000002c0)="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", 0x1000}, {&(0x7f0000000140)="5280e948910024892f4be24f18053c2161cf8e7fc03132209e01188837dd3bcd505e8281a288eb578931f017112c2745dcbdfe10c657f8eb3b5e133bfb0db52efb1e859305aa40420e831856e4c74bf88adf4006aef5b5919763808a080d9145c26706ce2359225e58aeef3017cadf221558f700dd37039c1b26b927c489f5ba3f82854e5f28ae213f606cd11941ef108b27c242720e33029786f989c62015e40d5644", 0xa3}, {&(0x7f00000012c0)="4e458cdad10e0371e44c9bc03eea95ee1c1a0ef0a872d58ce410cedc997214eb69896af504a47de2a4839362cc6cbcb7910555f149c1e834e7de57826ef017356a60dbe4f906b2b6f0d48c6b64868b51f4b44c97fbeba6618b9fd33e3a98e515149051ce967112ab65b534c6f5035c207b789a71ce64a2e42e5814da09be530a5268b019774171893fe15d2271b3e48fb40d6ab91814", 0x96}, {&(0x7f0000001380)="da65a5fcda79185948e847e37d4c826154811871a90913af74bfb7bf3d5cb364ecdfce42b815af80d4eddc7dafcf820ed7dfc5945a87bfaaeb140870d7603fa959b8e6ae7fa9175b6c252473e8b6fc13370d5264", 0x54}, {&(0x7f0000001400)="eefd1e6ed98fb0721d61d43a689040f84ca34a4edcb7055a1009a7c7a77c9572a7dcf032081faa1bed40d0248bcab8dd8842d1129bafbe572db2f68f6977095cf1a831ad33430d32e43bf5431569db856e670eb4065c0b7998164a706f2f1bb2709ba89ba629bb67161945c0b6d6c5506e9f60dc9882b86231b90ed6a72cfb44a7d4b3bd2bcb1c81b617446e35f6ab", 0x8f}, {&(0x7f00000014c0)="76067698bcf9971c075584fd1346411c543464e1a34991e5a31459412b4ad5390fd200a4f98219d4760d01c13341e493de990299b411bfba135df7d3995bf29a14d4feee02a28d74b8a00d409dd037d5e1b3f48bde9538075f49a5302316dc2a4795439e3a61ef726cd19e94a4ad8f706e545860838623b109c9660870eabc95993e617c5da70757e5acccc547d147a64258dce5403890631d9aec8a0e82639600ff4e8bb70edb33b720f33ae4c1b9bac0456d2ec269e51cb6a8b1cfecfd57bb1a5653ed94afde4b262a06ce3c2c1ef87c9a104c8c569540b92b2f7ec573b148bfe034767838bed8fb65e080f5c05a3f8bba6ecc41f48dee16cadcb2409f0f2f115e1db22f6f9a635b9ad7d0016367d4997c5b67e17de1cc03e5ac076b035e7787b50f49dbaafc47d577a0c5a6b2d5272ec41f98a0e5287b5f16e040fccb27f9a86febd12f25236a20c892bdc99cb712168c6e6fbd674571a210b4e84a5c24412849630e031f07c14641a7c7a2d6fb6bde5400fcb64ebb434cd1779a6f1dc6e9b9569b3bded00885068ae1d8b179fd6c0958f521bab95b6b43c47b0f7d5d80c77a3035599510ba9e3afd6081e495410e821408bf62184e858c7007a2b98ed81426e56ae0167965f954c3fa15f87ceb55da8830e29e07cd401f6092970f3479c143ca77c851e7669ee780d2ac13381a8e39f1e954219325ffa91ff0ab39d3499d109e551e8b992240e5a53354bc9c90b861bf9160c06153d5599faf41ac87d1cfe24e82b8735b16f8177454db221d74f91f225b390442c0158d962e768af62075870a5da1500316e28936bd0d3b4073fbac659ab6edb0dc3aae8efd8869e6a42e188c242a6955834cc7260dc82f8b7979768c2b06589405aad5a083d31177100a3edff9fa7fd02331514e92aadb53b0a483bbef504d9e8a1be2fd5e7a33a31411400746f8c3472d140c510519e0b533627b6fbc13efcd171ae8df2e8397c0bf89a4c5b34320528aba562a05ab4f48fe47687f46ed673a2a6fc2bbcc6b00b41184933c058d89a55eb2edec26da6857dbbb191fb0b800e14a8439d40be12e77ce1a8d887ca163fcc6dd1f9d59d56df28e09e27ecc178771b5d8e9977420511458aa0eb4ac26109eac79ff606dec6dca804d6af39a0f0e089bcf2446f3194fd36633d95498d371c31bbb7a6e172437e536ac2ff6d79e96def12cac65e8feac4a708559ca18ca25881437d5865fffecd1bb3eaa74f406a84a218731732d79cc8d02002e85d507b154dcda2275652985e79f3ecf5e779adfa84b8348318f8e76024d59146e8d1f767008abe474bb2717ebb62a9eae77045f08b9cf25c1394f7505f75babde7ebf33f68e5e5b90a7d05a922c9edea4c26991db95d78bcdc574c81531b89d04bb24bd6fc030f9a3937ee5fd201add885dbf46e511a27768fca438e91e56ec4e7946c8bb8085829955f0777085512f9647dfb9b181524d263f12634507b5ee4d5ee390ed6a0a9ce3ad6d9c3d6933323f964b2ddddeccda92f77d21e68bc318e2bcecf675a78350f6f207526961a025c3a9b96797c3c4da6b1950f88082464a84146238b81fd7d2e0baa49b3c03d245eb2ad82b795d6dd685c70b87bda09d8c2d2d6861bf4338fc854f4f97408722238abfda497169697151ebf020a65c27492dffc89df58ad4b9063ecacfeafefabeae257bd052abb739e1fd240ebc19cfb7c2d9e059e35480f6338968dbef7e6de8d7e5d65438a164fede63b9486a9d6b7dd89e4139b50de6251e78a0c879bab5748d5408c3488ba22e581ec722f90f60212481210674f91ef37d81dc596b4b99c6a8626813e0d56865b01dedb137f92916e2d96731436cd87d52d28f5b628d7034353ac51ebb5c2cc5684fad22adc2fd6f38cc20f08c90cbb9016d5fd4fca2a5e2c99abcce41fae1585cd8217e2184ef28a1640cb62d75e26234408643868965c4179c9cd4ed91086e47000cb9f3e71286f1123b77d8f25dcd447134d5070a0b91273c3b70fd8e677fef9e9e23fd746077bb5d319d642de4d7887522d556528b1d21cc95a68f22363aa104eb15406f57c4d7784b03e48a803d98e1e9f5c9fac443abc8812b7a6b86f423ac55f6deefacf2bede962a3013c3d96408e8a0e8a96dc9f5727eea85385518b4adeea315d3ce2301acca79cbf36f17e97f35b2d824ad0f9928e029c0441edf2dcdf7e151c7f7784468955ea23e30f80c817880ded5d7ced94c6b42c71af8a642c79aa58d1a2b75ef5af835deec55cf58e734ab43c79f85ccf71306022e0834b5a5a549f3538ef45c0f63774ec77c7bad4c4f910472b4866f811dbd3880c309a146a3cc4a3b78b223fa2d893ef72dec1bb59c4922271a511d3d401956a5cdefc5c2921b61ca23ed4d1333b01881df5e71f7f108859d99242075c4c86029084ff1d86da3589d9c103284044ec667f517f4469f271812b443efafa4c46052610504a368a7966787f170132a406eb3670b447344967d011236b2982807949a8414c554288efd0ff29ac9bd1073745af15b577f7dd8a20f917d497c7d1d24832d51150e8ef1cca7db70e87981c47e413a516996a9e65fbeafcf5d1abcceff063c0f5cc5cae31d4953af6d1b86204fae40161ee38f1460428eb8c9f71d41c0811aaeee1f092ebaa4e9c307edfe88ff202286b591ff11958d193656c422434cb72c2d999afd868b2e89965fd6b3612910fe16dc31a1065abb6fadede918e8e56abd963cc8d74a0c1f96521e3e2ecca9225ece5d25978fbd06adec870ae175abfad93b369375128d75c63a882d2cf23e438c3c90781cf32dbd61b3adce58f2dfcfd53d1701ff930e2a99a6552a267db7bd20a67739796fb1a1f8ae2eac8428cfd53257aae396420ade79ce94e3368d3579720c8ae82a7ee1892c14665f64a096ab9493604295bd48f9d469f6947f61a8a5c0c632fe0457ec90eb87396aa4fc2f04355efebf8c87d50cb16dadf345ede1c3e0a1174566b28c8b124822eb050b59a5c7f5c40c87a5e72f6590659470e9353098042e24d2e25268b383ece817becc1d005053ac7350d88c055e9fec23c5817db039af111adb5c62fc62e2ca197a7c22b640dd76d62e2085305e08e61ef6d53b3a157e70731a12aca56349314430fbb2561474026e8be24cfa09fbeb81303c2775868885257a8441fb35bca6ea6473014d2d823445672fa56f85aeda5796ea0dbbf1f2b44a22ba287cb6e396437c2285ade5680955da3ad48e46c2625d9da9ae33a44e9beb1be0a3029a4459ac97b73dc863e5f78b821b7d995e986bad2a088cc289daff6aaed0fd3dc3189b59e0b409abc56a9ba59bbe73825c9b64ab12af97107ad142550a89e8426305d6fbd98866d7a6f540d363c17f25dc06335f7a664a011e7541e529b579acaf0ce2b2956c6381ad13bc169f892ed99cfc6dac96ff076f69e6fc92d20f875b63795cba23cbbe8d0cff79f53825af12697e69eb6829bc38d4246d8b3670ae3dfa562528df77f0e92835879e2ebefc70ac5147b943501e380ba573130318fc8351cd1e2ecee769550f21850bb0a80ed75b0c6f0714747117295f243a9f229e535d6ec6c33c00a7a3f7bac9fe5742507a9af41163ed9e81530a0a009913e1e7c01650a4d8089783ea6937c4ad7990a6de8bc7704beadb437959dc01ebb93f7d31472cf05d8cf9dec9da8ada9279d969a393ee3f19119dd4af22ffe30b573cb722b0081f8c7ae7e1eeba5d678460e802b7d7473c633053fa72628e20bfb5eded938c3b6ad4f625fade61610bff2e238ae2a3448c445a3a2d29b4ac1713022f74b61307a06adb9b35656d28738468dec0f50956be499ce6ab5fa551652b81c338f835558374440ef0b2fde1ab137365d63fa38ec70e5d0f10f5174c0869f197727f5c9469068661516e8cb818c4ec901e5b223ef1e3af4c97a205203c616713a471ba2625ea83362ab2f5a036525a2452fd5b438dbd98783bbc21682ee41103e7b4c4cb39425e9ff595c70d788b7c5fdbf0bc01d2d4142f0d0972ef5c3e32ba8cdc9a31b1d4beeb2871fc8d21691a5eaf03e0218486479ab5cfbb8ed5fd4da1551f872931bc3b964bb9182c55be452ccbfde51365bd35291b863c5549836403eb9cfb30f3d31a6e1b5e585a1aa2db33874c2bf8e895dc82e884b961cbb9cf2b604dfb3f9e6cf864e5f3935052b2d276b2d15177b2b31972abaf36b07e7d0e512123fadf5298d202be5255e525c9ed01e914fe69b4feda8f0f0f273fc7d4c9ed12854b86415c7bc091be08d463a7f320710e7bca41ff068dd1ba55894bebd373ec81d47ef814ae6ed9a3a17e16748717260eef23118e14406fffd6622c6dc309624d54816b6c35896263f2a9075ca20d7394050c857d937dd8003b3b217ca378e22dbeda30a1bb7e851c2bf8fb0de64092e7e80a38c649300352d020c7c08bb9b20c71a6e5c187ee3ead8a858d2d3f9e1cef14998c1f5bbdea55c419c5689f2dede24d89eb6d54b81385bd0003c2130be276636c7cddae5de7753a5a45d3e25864ce791c55758eba4bc20f94f4449238cff43c3a58af0acd1408f2775ba9ef899963d970032c9bfb61660d9e35de661008f86a374383ebcc7521e075a5dab6db95764f693daa24d56e7071323ef5f753cfb6cad8ca9b96a8ea466b20e865d768d684151c341d9b3bf23fe2c90db3ca9368f5d893c895fb5acd7ef507aa9838bf0f5b647398569c05f26de081769fd39a4805dc1b8fc87c467e79b0fa13f9f4148cd0296e120cdfe4ec64b954000d0cc2d4056bb0bde0ed53208a3d675a63208bb14c0d0ef5bcfd73e2f8f2067322e5deb70e4ffe647e39c2ab5f15b8699e312752e1bb4edbebbe5053b2633da441c87b1da9e4205e009d62c286741a3f357ca0e77da715413bc9d7cfe4025bc36032925b44effda39d0f448a0751e59141e6e858561d6ef7944656872d344735a0d6bb867e763f2d3955b6819ebc56219ae151ad04295e0a5ef1072bcd7bfb18800d3d27c16e38fe192d0c5a27d23cec0e2058a0cbf66844c3ff7c9b7d96bdd3badc893927fbc8cf4e9047eb29ef61471b05ebb763d52a2b9a98baac22641ad0979922d30ec4187173e6ac151aaca7553f8ce51f948b1d770b890d04864e13a206196523089a6a6e1999b09e41ed043fd380f843a88364c46c4ec6f6c10953dce17a469aa1701e9c0afc6d73b85b1e73362c472b0c8fbb6b99079b269e091d150baca5bb57ed41cb6f6897518eed84b948baaaa8dc8414c11a7e237fee7e6f2825760e87cf87e0dc8a6bcd299f04ca1c4f1ae49ecdebd5bf2a8b4df1148cdf12d0df03d86df0aa8d525131ab4b46f9b0d5cdc39dd40861ac82f2693b3f9ebf1935a5c3c81170a53cb9bcd97c6528c0cffad9720ba1ddc4ad8dd478cf69bcc6817f47ef4cdd064e184f9013848ef5f167c24476ec1298fef46a49f1aef8c7253fad2c0ee4229a19ad17670edb8d9709f487722e99237802c39549541d864ceb9d4d925c9cea6c56b90eb3735370a636797a6ef0e93924ce870a548cef810bfbb80967e9ee1c3b4cf9c0c71b45ebc8b3ec15a08aa2fe140975390feeda5339d2be46d0744c08271f84e7e08515d7991c1609203875e5c6ff4daa5355fb0ae2ee91c60a8eb0148c42f4ae6d9eadbd56d8d248b0285b94dd7d9cd9fe4dc61ca677ed022dd2f2eecc4f53f8ed37ad07ccf57e43f832e494bbcc954ca3a4e30f89ea3b7850eb6d81f466624ae5b5efaf5addf495d58c407027b2e005908bbd7fc1eb21018d35b7fb", 0x1000}, {&(0x7f00000024c0)="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", 0x1000}, {&(0x7f00000034c0)="8bc7e92a5fd6293d5eda424cf7a29e752993d3ab3f8458574a24c037cfa03595352976b22f2a9fdacf98a97c47413ea6273d8d90d89c4acb0cc492eeae1a470b4497d65139fbc4b1e27b847ea2bca10c063c526d92cef87deb9e53b84d2dadced994479f0ff8ba3c44dd306fcf614f1b1cc2ee1f000b3196bfeba018c606586928df6a0e1b3e6b53ac448a92262a2e22a438503e18", 0x95}], 0x8, &(0x7f0000003bc0)=ANY=[@ANYBLOB="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"], 0x588, 0x4000}, 0x4000000) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000066c0)={{{@in6=@local, @in6=@ipv4={[], [], @loopback}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@mcast2}}, &(0x7f00000067c0)=0xe8) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa4ffffff], 0xbb}, r2}, 0x432) 04:53:44 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'hash\x00', 0x0, 0x0, 'sha1\x00'}, 0x58) syz_open_dev$binder(&(0x7f0000000080)='/dev/binder#\x00', 0x0, 0x800) r1 = accept4(r0, 0x0, &(0x7f0000000740), 0x0) sendmsg$IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10}, 0x9, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[]}, 0x1}, 0xc000) accept$alg(r1, 0x0, 0x0) sendmmsg$nfc_llcp(r1, &(0x7f0000001880)=[{&(0x7f00000001c0)={0x27, 0x0, 0x2, 0x7, 0x80000000, 0x0, "15e15472ae802b677ff1ecf26076f9fa265e4dda5fe82ff50a47b7957360be688640d0a4337d758cd50fc91892ee4b254e4a41ea82fddb64083b6439273863", 0x2}, 0x60, &(0x7f00000017c0)=[{&(0x7f0000000140)="f47162fdd65efc9bc289568fec99a773f34f31ec7ee32fde7495759f89630a512f002630a2c362aac6a9093e", 0x2c}, {&(0x7f0000000240)="d13bead464557957cda1a138daf2a77f697b8bd325d8db446ee66b2feb6bb4be3aa8fdc4af9d10c38f6f5f9a9e4f61d8d0e202ce6927a864b62e407b726d4e795184e46a6bf54f8aa313f5cfa5c4534799393d380149f829da54afb2de9096e02611852fb0d40f2efb", 0x69}, {&(0x7f0000000780)="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", 0x1000}, {&(0x7f00000002c0)="b4d4e886c6b774fb4ac07348cf747c0d842438292d03dfde2e6814c778a46ab90c329d5e2748f698b9e52291408a09ec29057cb5fc5ae5b25fd6834cf1d552bb8005317aadda0a2e3acd16ca5abe09854b9656cf2cedc8e15afa357e8c2770d69a758ce0b05aa861fd965ae85aab05f0f24ad36327b77cebea9d98adbf658bc4abbd416c7f664e5c7a318d8ce801c91ff5a07ab44d46484be06b4a0f6258d70156e6636ec4e6eb341ec3d017c2e11fcdf943902c51d62612298e2c83fba800773a34e1a60a6ecae88a86529d43a5c3fa0d522d20b5ca979facf1", 0xda}, {&(0x7f00000003c0)}, {&(0x7f0000000400)="dcc1b165054a37ad2372afa95831a3090f0c3a1034a809798202eca0e0677000c5bd123e0417de359e4bd2a85e33ae2211c3fb4185e962c6732b26e231c96334c266b5e45eb1cc09e9f4001e0d210bcf7449ca4882509b442c3effa8cb53668af5e3ba15123ae3488f1d1fdd842c2ff2361cc9f461ff76c084488f4c4fea3d61b2202c68322f3f0d390d2aa8367968a7a2f23956bd2e7bcb194eb54f0e9bb934e902605cfc54901029a5c66692be1275fcfe0f1c6755b65e2f0646e920ada31b0dad433bc24225a124268df02394d67f8882c1", 0xd3}, {&(0x7f0000000500)="dca704d147829f9150ca52466bfa609ec90642f8ee5a989001d6a8286ce639d9acbb3d42f6ce0f77f57876b56d81eb93fbbf34085ad3757b74dcf598d7702e7a098e88061eaf3498dc6acdd2e378a74bd37d2306283c0c30764fbb228e5a0e532c6e724d83c35cccba494a044661f98ac21dde8deef3c45a399db4b232f998912ded82cbcc06eda9cb0a7394d95b1680ce088c2e398641d8510e647799dfdaa28b4379757067b1a0f979b7cdeaf0b27a27b7eabbce08", 0xb6}, {&(0x7f00000005c0)="1f5eba6f374464915f331eec67763e70ae1dd360ae25d6b4e4777164d334d8e14f26c3211207dc11f8ae75c2897b4ab2839464307d0440971430c08c69d45cb47b6bada15843990aef2fed827f20c36eafbc465622f84e0c66374f65cededd87ecfcd04339b6cec3c580822de38cf2465066626dd42a27a659120a99bd275c9b60f64295aa0dfca0e041077fe9c51d84decdb4f7", 0x94}, {&(0x7f0000000680)="d49d3eef79bd25e27f4b5bbd8a9acb2709d49da9a3362fb6698f2c1f4f325cc33cb45e9a385ad70915f90f600c4511998f1a3f8cb47e39e03828d40d79756398fee2c8da10f57b755f1e4dd41a7fcee990bf89478a8e1bd966a84951d32189d8e3f181c0e1c54818c6e54e1c8b7bc82c759cdced2a15e2b039ccf8542121241ba3165e681d13ec86835f7b7e921c2bf7a7275029a3af647cff2c47da1ba6db271a17f5413e93e266ff76e276ca81fa7165400ed5b4081cb62346f1dd1e", 0xbd}, {&(0x7f0000001780)}], 0xa, 0x0, 0x0, 0x20008001}], 0x1, 0x20000040) 04:53:44 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x8090ae81, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:44 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x81, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={"00ac730000000000ec973f820f7c4000", 0x102}) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f00000000c0)={'ip6_vti0\x00', 0x400}) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000040)={'dummy0\x00', 0x600}) 04:53:44 executing program 3: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f0000000000)={0x0, @in={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x10}}}, 0x1, 0x5}, &(0x7f00000000c0)=0x90) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f0000000100)={r1, 0x400, 0x8}, 0x8) r2 = socket$packet(0x11, 0x2, 0x300) r3 = syz_open_dev$adsp(&(0x7f0000000300)='/dev/adsp#\x00', 0x1, 0x50352bd7878861e5) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r3, 0x29, 0xd2, &(0x7f0000000340)={{0xa, 0x4e23, 0x100000000, @mcast1={0xff, 0x1, [], 0x1}, 0x41}, {0xa, 0x4e20, 0x5, @loopback={0x0, 0x1}, 0x5}, 0x1ff, [0xffffffff, 0x3, 0x3, 0x4f, 0x101, 0x57201835, 0x2]}, 0x5c) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000ff5ffc), 0x4) r4 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000a6f000)={0x2}, 0x4) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000006ffc), 0x4) 04:53:44 executing program 7 (fault-call:7 fault-nth:14): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:44 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8d00000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 214.470014] FAULT_INJECTION: forcing a failure. [ 214.470014] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 214.482058] CPU: 0 PID: 14292 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 214.490456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 214.499916] Call Trace: [ 214.502499] dump_stack+0x1c9/0x2b4 [ 214.506558] ? dump_stack_print_info.cold.2+0x52/0x52 [ 214.511736] should_fail.cold.4+0xa/0x11 [ 214.515794] ? eth_gro_receive+0x8d0/0x8d0 [ 214.520017] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 214.525103] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 214.530630] ? find_get_entry+0xa6d/0x1120 [ 214.534853] ? lock_downgrade+0x8f0/0x8f0 [ 214.538983] ? lock_release+0xa30/0xa30 [ 214.542940] ? loopback_net_init+0x160/0x160 [ 214.547349] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 214.552872] ? lock_acquire+0x1e4/0x540 [ 214.556836] ? fs_reclaim_acquire+0x20/0x20 [ 214.561148] ? lock_downgrade+0x8f0/0x8f0 [ 214.565389] ? check_same_owner+0x340/0x340 [ 214.569709] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 214.575417] ? rcu_note_context_switch+0x730/0x730 [ 214.580336] __alloc_pages_nodemask+0x36e/0xdb0 [ 214.585104] ? __alloc_pages_slowpath+0x2d00/0x2d00 [ 214.590204] ? netif_skb_features+0xb70/0xb70 [ 214.594682] ? __dev_queue_xmit+0x157f/0x38c0 [ 214.599164] ? trace_hardirqs_on+0xd/0x10 [ 214.603297] ? __local_bh_enable_ip+0x161/0x230 [ 214.608038] ? trace_hardirqs_on+0xd/0x10 [ 214.612168] ? __local_bh_enable_ip+0x161/0x230 [ 214.616823] ? netdev_pick_tx+0x2d0/0x2d0 [ 214.620955] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 214.626480] alloc_pages_vma+0xdd/0x540 [ 214.630442] shmem_alloc_page+0xa8/0x190 [ 214.634485] ? shmem_swapin+0x230/0x230 [ 214.638450] ? rb_next+0x140/0x140 [ 214.641977] shmem_alloc_and_acct_page+0x1f1/0x820 [ 214.646890] ? shmem_getattr+0x2c0/0x2c0 [ 214.650939] ? trace_hardirqs_on+0x10/0x10 [ 214.655164] shmem_getpage_gfp+0x6ea/0x3ec0 [ 214.659487] ? shmem_writepage+0x13a0/0x13a0 [ 214.663882] ? trace_hardirqs_on+0x10/0x10 [ 214.668103] ? trace_hardirqs_on+0x10/0x10 [ 214.672322] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 214.677321] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 214.682063] ? trace_hardirqs_on+0x10/0x10 [ 214.686287] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 214.691029] ? trace_hardirqs_on+0x10/0x10 [ 214.695248] ? is_bpf_text_address+0xae/0x170 [ 214.699728] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 214.705275] ? xas_start+0x23d/0x740 [ 214.708994] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 214.714516] ? xas_descend+0x20c/0x5f0 [ 214.718387] ? xa_destroy+0x4d0/0x4d0 [ 214.722176] ? trace_hardirqs_on+0x10/0x10 [ 214.726394] ? lock_downgrade+0x8f0/0x8f0 [ 214.730541] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 214.736073] ? xas_load+0x43/0x1e0 [ 214.739602] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 214.744605] ? filemap_map_pages+0xca2/0x1990 [ 214.749082] ? lock_downgrade+0x8f0/0x8f0 [ 214.753226] ? xa_set_tag+0x40/0x40 [ 214.756929] ? kasan_check_read+0x11/0x20 [ 214.761061] ? rcu_is_watching+0x8c/0x150 [ 214.765205] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 214.769856] ? percpu_ref_tryget_live+0x15b/0x440 [ 214.774696] ? filemap_map_pages+0xccb/0x1990 [ 214.779181] ? find_get_entries_tag+0x1410/0x1410 [ 214.784016] ? save_stack+0xa9/0xd0 [ 214.787629] ? save_stack+0x43/0xd0 [ 214.791238] ? kasan_kmalloc+0xc4/0xe0 [ 214.795107] ? kasan_slab_alloc+0x12/0x20 [ 214.799248] ? kmem_cache_alloc+0x12e/0x760 [ 214.803555] ? ptlock_alloc+0x20/0x80 [ 214.807340] ? pte_alloc_one+0x6b/0x1a0 [ 214.811300] ? __handle_mm_fault+0x36bb/0x4480 [ 214.815867] ? handle_mm_fault+0x53e/0xc80 [ 214.820085] ? __do_page_fault+0x620/0xe50 [ 214.824301] ? do_page_fault+0xf6/0x8c0 [ 214.828262] ? page_fault+0x1e/0x30 [ 214.831882] ? copy_user_enhanced_fast_string+0xe/0x20 [ 214.837143] ? _copy_from_iter_full+0x267/0xd20 [ 214.843379] ? tcp_sendmsg_locked+0x2d01/0x3f10 [ 214.848029] ? tcp_sendmsg+0x2f/0x50 [ 214.851737] ? inet_sendmsg+0x1a1/0x690 [ 214.855704] ? sock_sendmsg+0xd5/0x120 [ 214.859576] ? __sys_sendto+0x3d7/0x670 [ 214.863533] ? __x64_sys_sendto+0xe1/0x1a0 [ 214.867759] ? do_syscall_64+0x1b9/0x820 [ 214.871808] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 214.877159] shmem_fault+0x25f/0x960 [ 214.880869] ? lock_acquire+0x1e4/0x540 [ 214.884830] ? shmem_read_mapping_page_gfp+0x1f0/0x1f0 [ 214.890090] ? lock_release+0xa30/0xa30 [ 214.894052] ? check_same_owner+0x340/0x340 [ 214.898362] ? kasan_unpoison_shadow+0x35/0x50 [ 214.902941] __do_fault+0xee/0x450 [ 214.906462] ? kasan_slab_alloc+0x12/0x20 [ 214.910604] ? pmd_devmap_trans_unstable+0x1d0/0x1d0 [ 214.915694] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 214.921213] ? __lockdep_init_map+0x105/0x590 [ 214.925690] ? pmd_val+0x88/0x100 [ 214.929127] ? add_mm_counter_fast+0xd0/0xd0 [ 214.933522] __handle_mm_fault+0x2cc1/0x4480 [ 214.937928] ? vmf_insert_mixed_mkwrite+0xa0/0xa0 [ 214.942764] ? lock_acquire+0x1e4/0x540 [ 214.946725] ? handle_mm_fault+0x417/0xc80 [ 214.950948] ? lock_downgrade+0x8f0/0x8f0 [ 214.955078] ? lock_release+0xa30/0xa30 [ 214.959040] ? lock_release+0xa30/0xa30 [ 214.963001] ? mem_cgroup_from_task+0xcb/0x1f0 [ 214.967574] ? mem_cgroup_css_online+0x3c0/0x3c0 [ 214.972322] handle_mm_fault+0x53e/0xc80 [ 214.976370] ? __handle_mm_fault+0x4480/0x4480 [ 214.980957] ? find_vma+0x34/0x190 [ 214.984484] __do_page_fault+0x620/0xe50 [ 214.988531] ? mm_fault_error+0x380/0x380 [ 214.992671] ? kasan_kmalloc+0xc4/0xe0 [ 214.996547] do_page_fault+0xf6/0x8c0 [ 215.000332] ? vmalloc_sync_all+0x30/0x30 [ 215.004470] ? __kmalloc_node_track_caller+0x47/0x70 [ 215.009565] ? kasan_check_write+0x14/0x20 [ 215.013788] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 215.018635] page_fault+0x1e/0x30 [ 215.022088] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20 [ 215.027952] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 [ 215.047128] RSP: 0018:ffff88019273f5b0 EFLAGS: 00010202 [ 215.052478] RAX: 0000000000000000 RBX: 00000000000004a4 RCX: 00000000000004a4 [ 215.059747] RDX: 00000000000004a4 RSI: 0000000020a88f88 RDI: ffff8801ad34f6d0 [ 215.067001] RBP: ffff88019273f5e8 R08: ffffed0035a69f6f R09: ffffed0035a69f6f [ 215.074257] R10: ffffed0035a69f6e R11: ffff8801ad34fb73 R12: 0000000020a8942c [ 215.081514] R13: 0000000020a88f88 R14: ffff8801ad34f6d0 R15: 00007ffffffff000 [ 215.088782] ? copyin+0xe4/0x100 [ 215.092153] _copy_from_iter_full+0x267/0xd20 [ 215.096816] ? usercopy_warn+0x120/0x120 [ 215.100881] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 215.105881] ? tcp_rate_check_app_limited+0x121/0x470 [ 215.111058] ? iov_iter_advance+0x14e0/0x14e0 [ 215.115537] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 215.120551] ? skb_put+0x17b/0x1e0 [ 215.124075] tcp_sendmsg_locked+0x2d01/0x3f10 [ 215.128566] ? lock_acquire+0x1e4/0x540 [ 215.132528] ? tcp_sendpage+0x60/0x60 [ 215.136315] ? __fget+0x4d5/0x740 [ 215.139759] ? _parse_integer+0x190/0x190 [ 215.143895] ? lock_acquire+0x1e4/0x540 [ 215.147851] ? tcp_sendmsg+0x21/0x50 [ 215.151550] ? lock_release+0xa30/0xa30 [ 215.155507] ? kasan_check_read+0x11/0x20 [ 215.159647] ? do_raw_spin_unlock+0xa7/0x2f0 [ 215.164038] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 215.168603] ? kasan_check_write+0x14/0x20 [ 215.172832] ? lock_sock_nested+0x9f/0x120 [ 215.177052] ? trace_hardirqs_on+0xd/0x10 [ 215.181183] ? __local_bh_enable_ip+0x161/0x230 [ 215.185835] tcp_sendmsg+0x2f/0x50 [ 215.189358] inet_sendmsg+0x1a1/0x690 [ 215.193143] ? ipip_gro_receive+0x100/0x100 [ 215.197453] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 215.203547] ? security_socket_sendmsg+0x94/0xc0 [ 215.208288] ? ipip_gro_receive+0x100/0x100 [ 215.212595] sock_sendmsg+0xd5/0x120 [ 215.216297] __sys_sendto+0x3d7/0x670 [ 215.220097] ? __ia32_sys_getpeername+0xb0/0xb0 [ 215.224748] ? vfs_write+0x2f3/0x560 [ 215.228446] ? wait_for_completion+0x8d0/0x8d0 [ 215.233017] ? lock_release+0xa30/0xa30 [ 215.236980] ? fsnotify_first_mark+0x350/0x350 [ 215.241545] ? __fsnotify_parent+0xcc/0x420 [ 215.245859] ? fsnotify+0x14e0/0x14e0 [ 215.249658] ? __sb_end_write+0xac/0xe0 [ 215.253620] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 215.259151] ? fput+0x130/0x1a0 [ 215.262414] ? ksys_write+0x1ae/0x260 [ 215.266200] ? __ia32_sys_read+0xb0/0xb0 [ 215.270247] ? syscall_slow_exit_work+0x500/0x500 [ 215.275076] __x64_sys_sendto+0xe1/0x1a0 [ 215.279124] do_syscall_64+0x1b9/0x820 [ 215.282994] ? finish_task_switch+0x1d3/0x870 [ 215.287474] ? syscall_return_slowpath+0x5e0/0x5e0 [ 215.292386] ? syscall_return_slowpath+0x31d/0x5e0 [ 215.297313] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 215.302315] ? prepare_exit_to_usermode+0x291/0x3b0 [ 215.307319] ? perf_trace_sys_enter+0xb10/0xb10 [ 215.311974] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 215.316804] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 215.321977] RIP: 0033:0x455e29 [ 215.325147] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 215.344320] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 215.352017] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 215.359271] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 215.366534] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 04:53:45 executing program 2: bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x4}, 0x2c) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x9, 0x5, &(0x7f0000346fc8)=@framed={{0x18}, [@alu={0x8000000201a7f19, 0x0, 0x7, 0x0, 0x1, 0x18}], {0x95}}, &(0x7f0000f6bffb)='GPL\x00', 0x0, 0x299, &(0x7f00001a7f05)=""/251}, 0x18) r1 = memfd_create(&(0x7f00000000c0)='\x00', 0x3) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000000040)=r0) 04:53:45 executing program 0: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r1 = syz_genetlink_get_family_id$team(&(0x7f0000000080)='team\x00') getsockname$packet(r0, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000001500)=0x14) accept$packet(r0, &(0x7f0000001540)={0x0, 0x0, 0x0}, &(0x7f0000001580)=0x14) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000015c0)={'team0\x00', 0x0}) accept$packet(r0, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000001700)=0x14) connect$rds(r0, &(0x7f00000008c0)={0x2, 0x4e22, @rand_addr=0x68e}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000001740)={{{@in=@dev, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in6=@mcast2}}, &(0x7f0000001840)=0xe8) getsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f0000001a00)={@mcast2, 0x0}, &(0x7f0000001a40)=0x14) getsockopt$inet6_mreq(r0, 0x29, 0x1d, &(0x7f0000001a80)={@loopback, 0x0}, &(0x7f0000001ac0)=0x14) recvmsg(r0, &(0x7f0000004700)={&(0x7f00000031c0)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f00000045c0)=[{&(0x7f0000003240)=""/209, 0xd1}, {&(0x7f0000003340)=""/98, 0x62}, {&(0x7f00000033c0)=""/25, 0x19}, {&(0x7f0000003400)=""/190, 0xbe}, {&(0x7f00000034c0)=""/4096, 0x1000}, {&(0x7f00000044c0)=""/65, 0x41}, {&(0x7f0000004540)=""/22, 0x16}, {&(0x7f0000004580)}], 0x8, &(0x7f0000004640)=""/139, 0x8b, 0x3}, 0x12041) accept4$packet(r0, &(0x7f0000004740)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000004780)=0x14, 0x80000) setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f0000000180)=0x1, 0x4) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f00000047c0)={'team0\x00', 0x0}) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000000c0)={0x0, @multicast2, @remote}, &(0x7f0000004900)=0xc) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000004940)={{{@in, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@dev}}, &(0x7f0000004a40)=0xe8) syz_genetlink_get_family_id$ipvs(&(0x7f0000000a00)='IPVS\x00') r14 = accept(r0, &(0x7f0000004a80)=@xdp={0x0, 0x0, 0x0}, &(0x7f0000004b00)=0x80) accept4$packet(r0, &(0x7f0000004b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000004b80)=0x14, 0x800) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000004fc0)={0x0, @empty, @multicast1}, &(0x7f0000005000)=0xc) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000005040)={'vcan0\x00', 0x0}) sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000005740)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000005700)={&(0x7f00000001c0)=ANY=[@ANYBLOB="70060000", @ANYRES16=r1, @ANYBLOB="00002abd7000ffdbdf250300000008000100", @ANYRES32=r2, @ANYBLOB="0001020040000100240001006c625f686173685f737461747300000000000000000000000000000000000000080003000b0000000800040008000000080007000000000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000080003000300000008000400", @ANYRES32=r3, @ANYBLOB="08000700000000003c000100240001006c625f74785f6d6574686f64000000000000000000000000000000000000000008000300050000000c000400686173680000000040000100240001006c625f686173685f737461747300000000000000000000000000000000000000080003000b00000008000400ff010000080007000000000008000100", @ANYRES32=r4, @ANYBLOB="b800020038000100240001006c625f73746174735f726566726573685f696e74657276616c00000000000000080003000300000008000400050000003c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000008000300060000000400040008000600", @ANYRES32=r5, @ANYBLOB="40000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000080003000300000008000400", @ANYRES32=r6, @ANYBLOB="080007000000000008000100", @ANYRES32=r7, @ANYBLOB="e80102003800010024000100616374697665706f727400000000000000000000000000000000000000000000080003000300000008000400", @ANYRES32=r8, @ANYBLOB="38000100240001006c625f73746174735f726566726573685f696e74657276616c00000000000000080003000300000008000400ffffff7f38000100240001006e6f746966795f70656572735f696e74657276616c000000000000000000000008000300030000000800040005000000400001002400010071756575655f69640000000000000000000000000000000000000000000000000800030003000000080004006006000008000600", @ANYRES32=r9, @ANYBLOB="40000100240001006c625f706f72745f737461747300000000000000000000000000000000000000080003000b000000080004000900000008000600", @ANYRES32=r10, @ANYBLOB="40000100240001007072696f72697479000000000000000000000000000000000000000000000000080003000e000000080004004a09000008000600", @ANYRES32=r11, @ANYBLOB="3c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000300050000000c000400686173680000000040000100240001006c625f706f72745f7374613b7340000000000000000000000009000000000000080003000b000000080004007f00000008000600a37f35cc2316410130e5b5308ced43ac29d3aea111596c07c35bca3fdd663f75d6666f2b4ee6ee457fe21ced9f6565c54b0407d66db98c2e8b663e92f497b030661ebf56ba994faa6b754fd7370f46c0f2eda4f9e2c7d7fd7c5f0ee680416e324f5857", @ANYRES32=r12, @ANYBLOB="08000100", @ANYRES32=r13, @ANYBLOB="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", @ANYRES32=r15, @ANYBLOB="08000100", @ANYRES32=r16, @ANYBLOB="6c01020038000100240001006e6f746966795f70656572735f696e74657276616c0000000000000000000000080003000300000008000400050000003c000100240001006c625f74785f6d6574686f64000000000000000000000000000000000000000008000300050000000c00040068617368000000003c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000008000300060000000400040008000600", @ANYRES32=r17, @ANYBLOB="40000100240001006c625f686173685f737461747300000000000000000000000000000000000000080003000b00000008000400e5030000080007000000000040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000080003000b000000080004000800000008000600", @ANYRES32=r18, @ANYBLOB="38000100240001006e6f746966795f70656572735f636f756e74000000000000000000000000000008000300030000000800040056000000"], 0x670}, 0x1, 0x0, 0x0, 0x44000}, 0x4000800) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r14, 0x84, 0x1e, &(0x7f0000000100), &(0x7f0000000140)=0x4) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x0, 0x10003) 04:53:45 executing program 3: syz_init_net_socket$bt_sco(0x1f, 0x3, 0x3) r0 = memfd_create(&(0x7f0000000000)='lo\x00', 0x0) connect$netlink(r0, &(0x7f0000000400)=@unspec, 0xc) r1 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000180)={&(0x7f0000000080)='./file0\x00', 0x0, 0x18}, 0x10) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r1, 0xc0505510, &(0x7f0000000380)={0x9, 0x7, 0x20, 0xffffffff, &(0x7f00000001c0)=[{}, {}, {}, {}, {}, {}, {}]}) dup2(r0, r1) shutdown(r0, 0x0) sendmsg$IPVS_CMD_DEL_DEST(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x0, 0x0, 0x0, {0x7}}, 0x14}, 0x1}, 0x0) 04:53:45 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vsock\x00', 0x80000, 0x0) ioctl$LOOP_GET_STATUS(r1, 0x4c03, &(0x7f0000000200)) bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58) r2 = accept$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="d3ab27191a01002356ba602e0905000b", 0x10) recvmmsg(r2, &(0x7f0000005e80)=[{{&(0x7f0000005b00)=@ll, 0x80, &(0x7f0000005d80)=[{&(0x7f0000005d40)=""/42, 0x2a}], 0x1, &(0x7f0000005dc0)=""/174, 0xae}}], 0x1, 0x0, 0x0) io_setup(0x800, &(0x7f0000000000)=0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) io_pgetevents(r3, 0x81, 0x2, &(0x7f0000000080)=[{}, {}], &(0x7f0000000180)={r4, r5+30000000}, 0x0) [ 215.373789] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 215.381070] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 000000000000000e 04:53:45 executing program 1: syz_mount_image$msdos(&(0x7f0000000180)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0xe800, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, &(0x7f0000000240)=ANY=[]) r0 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0) write$binfmt_aout(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="80"], 0x1) ftruncate(r1, 0x2) symlink(&(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='./file0\x00') umount2(&(0x7f0000000180)='./file0\x00', 0x8) 04:53:45 executing program 7 (fault-call:7 fault-nth:15): mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f0000000140)=0x78, 0x4) bind$inet(r1, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='yeah\x00', 0x5) sendto$inet(r1, &(0x7f0000a88f88), 0xfffffffffffffe6e, 0x20000000, &(0x7f0000e68000)={0x2, 0x4004e23, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) shutdown(r1, 0x1) 04:53:45 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0xc020660b, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) 04:53:45 executing program 2: r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x1, 0x1000402) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x400000, 0x0) ioctl$int_in(r0, 0x80000080045017, &(0x7f0000000000)) 04:53:45 executing program 3: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000001380)="025cc83d6d345f8f762070") r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000080), &(0x7f0000001340)=0xb) r2 = syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0x0) sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000a29000)={&(0x7f00005dafe4)=@in6={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c, &(0x7f0000000000)=[{&(0x7f00000000c0)="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", 0x284}], 0x1}, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000001440)="f2ccf13b8f559e027329c9ff37ba4c45dc8d6c0c4ef0ba763a656cfa36f0072adfd85a7493c0d9f35b84477920c61214f0f3de5738841222df5be85b0595674a8de5ebe4e47a17b0d8b64d11c857935c6a57f739f46761571cc0e5bfb2b14354cb2906db24b06a903fbb2dd5b03d10ee873f5e678da37e691f61587b03eb841b1fbcdfa99bbca54c0dc1f723cfa06f8e46c6bf384e0b8defd8a88dc67ee3862d4c77cc2ecaab3de7fcc427b1de0328c2a577c51824306df0b74be451f76e418b4a2096caf843b6") ioctl$SNDRV_TIMER_IOCTL_INFO(r2, 0xc0145401, &(0x7f0000000340)=""/4096) [ 215.672823] Unknown ioctl 19459 [ 215.681691] FAULT_INJECTION: forcing a failure. [ 215.681691] name failslab, interval 1, probability 0, space 0, times 0 [ 215.688116] Unknown ioctl 19459 [ 215.692945] CPU: 0 PID: 14327 Comm: syz-executor7 Not tainted 4.18.0-rc3-next-20180706+ #1 [ 215.692955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 215.692962] Call Trace: [ 215.692984] dump_stack+0x1c9/0x2b4 [ 215.693006] ? dump_stack_print_info.cold.2+0x52/0x52 [ 215.727029] ? __netdev_pick_tx+0xce0/0xce0 [ 215.731349] should_fail.cold.4+0xa/0x11 [ 215.735401] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 215.740491] ? netif_rx_internal+0x168/0x9c0 [ 215.744887] ? refcount_sub_and_test+0x21a/0x350 [ 215.749626] ? do_xdp_generic+0x50/0x50 [ 215.753611] ? refcount_inc_not_zero+0x2f0/0x2f0 [ 215.758359] ? refcount_inc_not_zero+0x2f0/0x2f0 [ 215.763098] ? refcount_inc_not_zero+0x2f0/0x2f0 [ 215.767854] ? trace_hardirqs_on+0x10/0x10 [ 215.772089] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 215.777622] ? sk_free+0x30/0x50 [ 215.780976] ? tcp_wfree+0x554/0x770 [ 215.785036] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 215.790559] ? sk_free+0x30/0x50 [ 215.793911] ? refcount_sub_and_test+0x21a/0x350 [ 215.798656] ? netif_rx+0xbf/0x420 [ 215.802187] ? dev_forward_skb+0x60/0x60 [ 215.806245] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 215.811773] __should_failslab+0x124/0x180 [ 215.815993] should_failslab+0x9/0x14 [ 215.819784] kmem_cache_alloc+0x47/0x760 [ 215.823852] ? trace_hardirqs_on+0x10/0x10 [ 215.828084] xas_alloc+0x38a/0x490 [ 215.831620] ? minmax_running_min+0x690/0x690 [ 215.836106] ? loopback_net_init+0x160/0x160 [ 215.840504] xas_create+0x3ae/0x1150 [ 215.844209] ? fs_reclaim_acquire+0x20/0x20 [ 215.848518] ? xas_descend+0x5f0/0x5f0 [ 215.852395] ? lock_acquire+0x1e4/0x540 [ 215.856373] ? percpu_ref_tryget_live+0x143/0x440 [ 215.861232] ? lock_downgrade+0x8f0/0x8f0 [ 215.865364] ? lock_release+0xa30/0xa30 [ 215.869350] ? __alloc_pages_nodemask+0x6e3/0xdb0 [ 215.874223] ? trace_hardirqs_on+0xd/0x10 [ 215.878362] ? try_charge+0xbc2/0x1680 [ 215.882232] xas_store+0xce/0x1720 [ 215.885766] ? xas_descend+0x20c/0x5f0 [ 215.889640] ? xa_destroy+0x4d0/0x4d0 [ 215.893421] ? xa_find_after+0x9a0/0x9a0 [ 215.897462] ? percpu_ref_put_many+0x119/0x240 [ 215.902040] ? lock_downgrade+0x8f0/0x8f0 [ 215.906217] ? __sanitizer_cov_trace_cmp1+0x17/0x20 [ 215.911233] ? xas_find_conflict+0x360/0x8d0 [ 215.915627] ? kasan_check_write+0x14/0x20 [ 215.919851] shmem_add_to_page_cache+0x98e/0x1450 [ 215.924687] ? shmem_write_end+0x9a0/0x9a0 [ 215.928908] ? mem_cgroup_try_charge+0x548/0xa70 [ 215.933671] ? mem_cgroup_protected+0xa60/0xa60 [ 215.938337] ? rb_next+0x140/0x140 [ 215.941864] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 215.947386] ? shmem_alloc_and_acct_page+0x31a/0x820 [ 215.952483] ? shmem_getattr+0x2c0/0x2c0 [ 215.956529] ? trace_hardirqs_on+0x10/0x10 [ 215.960766] shmem_getpage_gfp+0xaad/0x3ec0 [ 215.965095] ? shmem_writepage+0x13a0/0x13a0 [ 215.969506] ? trace_hardirqs_on+0x10/0x10 [ 215.973734] ? trace_hardirqs_on+0x10/0x10 [ 215.977964] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 215.982974] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 215.987729] ? trace_hardirqs_on+0x10/0x10 [ 215.991956] ? bpf_prog_kallsyms_find+0xde/0x4c0 [ 215.996706] ? trace_hardirqs_on+0x10/0x10 [ 216.000930] ? is_bpf_text_address+0xae/0x170 [ 216.005426] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 216.010965] ? xas_start+0x23d/0x740 [ 216.014666] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 216.020219] ? xas_descend+0x20c/0x5f0 [ 216.024114] ? xa_destroy+0x4d0/0x4d0 [ 216.027905] ? trace_hardirqs_on+0x10/0x10 [ 216.032146] ? lock_downgrade+0x8f0/0x8f0 [ 216.036300] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 216.042366] ? xas_load+0x43/0x1e0 [ 216.045900] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 216.050901] ? filemap_map_pages+0xca2/0x1990 [ 216.055391] ? lock_downgrade+0x8f0/0x8f0 [ 216.059523] ? xa_set_tag+0x40/0x40 [ 216.063134] ? kasan_check_read+0x11/0x20 [ 216.067266] ? rcu_is_watching+0x8c/0x150 [ 216.071420] ? rcu_cleanup_dead_rnp+0x200/0x200 [ 216.076078] ? percpu_ref_tryget_live+0x15b/0x440 [ 216.080924] ? find_get_entries_tag+0x1410/0x1410 [ 216.085765] ? save_stack+0xa9/0xd0 [ 216.089394] ? save_stack+0x43/0xd0 [ 216.093019] ? kasan_kmalloc+0xc4/0xe0 [ 216.096899] ? kasan_slab_alloc+0x12/0x20 [ 216.101037] ? kmem_cache_alloc+0x12e/0x760 [ 216.105355] ? ptlock_alloc+0x20/0x80 [ 216.109143] ? pte_alloc_one+0x6b/0x1a0 [ 216.113101] ? __handle_mm_fault+0x36bb/0x4480 [ 216.117666] ? handle_mm_fault+0x53e/0xc80 [ 216.121902] ? __do_page_fault+0x620/0xe50 [ 216.126133] ? do_page_fault+0xf6/0x8c0 [ 216.130094] ? page_fault+0x1e/0x30 [ 216.133711] ? copy_user_enhanced_fast_string+0xe/0x20 [ 216.138980] ? _copy_from_iter_full+0x267/0xd20 [ 216.143656] ? tcp_sendmsg_locked+0x2d01/0x3f10 [ 216.148313] ? tcp_sendmsg+0x2f/0x50 [ 216.152023] ? inet_sendmsg+0x1a1/0x690 [ 216.155988] ? sock_sendmsg+0xd5/0x120 [ 216.159875] ? __sys_sendto+0x3d7/0x670 [ 216.163830] ? __x64_sys_sendto+0xe1/0x1a0 [ 216.168058] ? do_syscall_64+0x1b9/0x820 [ 216.172107] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 216.177454] shmem_fault+0x25f/0x960 [ 216.181164] ? lock_acquire+0x1e4/0x540 [ 216.185127] ? shmem_read_mapping_page_gfp+0x1f0/0x1f0 [ 216.190387] ? lock_release+0xa30/0xa30 [ 216.194359] ? check_same_owner+0x340/0x340 [ 216.198684] ? kasan_unpoison_shadow+0x35/0x50 [ 216.203264] __do_fault+0xee/0x450 [ 216.206795] ? kasan_slab_alloc+0x12/0x20 [ 216.210926] ? pmd_devmap_trans_unstable+0x1d0/0x1d0 [ 216.216035] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 216.221566] ? __lockdep_init_map+0x105/0x590 [ 216.226055] ? pmd_val+0x88/0x100 [ 216.229500] ? add_mm_counter_fast+0xd0/0xd0 [ 216.233895] __handle_mm_fault+0x2cc1/0x4480 [ 216.238292] ? vmf_insert_mixed_mkwrite+0xa0/0xa0 [ 216.243131] ? lock_acquire+0x1e4/0x540 [ 216.247089] ? handle_mm_fault+0x417/0xc80 [ 216.251306] ? lock_downgrade+0x8f0/0x8f0 [ 216.255436] ? lock_release+0xa30/0xa30 [ 216.259394] ? lock_release+0xa30/0xa30 [ 216.263354] ? mem_cgroup_from_task+0xcb/0x1f0 [ 216.267928] ? mem_cgroup_css_online+0x3c0/0x3c0 [ 216.273028] handle_mm_fault+0x53e/0xc80 [ 216.277077] ? __handle_mm_fault+0x4480/0x4480 [ 216.281643] ? find_vma+0x34/0x190 [ 216.285177] __do_page_fault+0x620/0xe50 [ 216.289242] ? mm_fault_error+0x380/0x380 [ 216.293374] ? kasan_kmalloc+0xc4/0xe0 [ 216.297246] do_page_fault+0xf6/0x8c0 [ 216.301039] ? vmalloc_sync_all+0x30/0x30 [ 216.305171] ? __kmalloc_node_track_caller+0x47/0x70 [ 216.310270] ? kasan_check_write+0x14/0x20 [ 216.314494] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 216.319324] page_fault+0x1e/0x30 [ 216.322760] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20 [ 216.328635] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 [ 216.347768] RSP: 0018:ffff88019273f5b0 EFLAGS: 00010202 [ 216.353117] RAX: 0000000000000000 RBX: 00000000000004a4 RCX: 00000000000004a4 [ 216.360376] RDX: 00000000000004a4 RSI: 0000000020a88f88 RDI: ffff880194ac4ed0 [ 216.367629] RBP: ffff88019273f5e8 R08: ffffed0032958a6f R09: ffffed0032958a6f [ 216.374880] R10: ffffed0032958a6e R11: ffff880194ac5373 R12: 0000000020a8942c [ 216.382130] R13: 0000000020a88f88 R14: ffff880194ac4ed0 R15: 00007ffffffff000 [ 216.389393] ? copyin+0xe4/0x100 [ 216.392760] _copy_from_iter_full+0x267/0xd20 [ 216.397249] ? usercopy_warn+0x120/0x120 [ 216.401291] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 216.406289] ? tcp_rate_check_app_limited+0x121/0x470 [ 216.411469] ? iov_iter_advance+0x14e0/0x14e0 [ 216.415959] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 216.420960] ? skb_put+0x17b/0x1e0 [ 216.424485] tcp_sendmsg_locked+0x2d01/0x3f10 [ 216.428961] ? lock_acquire+0x1e4/0x540 [ 216.432920] ? tcp_sendpage+0x60/0x60 [ 216.436725] ? __fget+0x4d5/0x740 [ 216.440172] ? _parse_integer+0x190/0x190 [ 216.444314] ? lock_acquire+0x1e4/0x540 [ 216.448270] ? tcp_sendmsg+0x21/0x50 [ 216.451968] ? lock_release+0xa30/0xa30 [ 216.455933] ? kasan_check_read+0x11/0x20 [ 216.460099] ? do_raw_spin_unlock+0xa7/0x2f0 [ 216.464502] ? do_raw_spin_trylock+0x1c0/0x1c0 [ 216.469082] ? kasan_check_write+0x14/0x20 [ 216.473311] ? lock_sock_nested+0x9f/0x120 [ 216.477535] ? trace_hardirqs_on+0xd/0x10 [ 216.481671] ? __local_bh_enable_ip+0x161/0x230 [ 216.486333] tcp_sendmsg+0x2f/0x50 [ 216.489859] inet_sendmsg+0x1a1/0x690 [ 216.493641] ? ipip_gro_receive+0x100/0x100 [ 216.497966] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 216.503489] ? security_socket_sendmsg+0x94/0xc0 [ 216.508237] ? ipip_gro_receive+0x100/0x100 [ 216.512543] sock_sendmsg+0xd5/0x120 [ 216.516254] __sys_sendto+0x3d7/0x670 [ 216.520043] ? __ia32_sys_getpeername+0xb0/0xb0 [ 216.524695] ? vfs_write+0x2f3/0x560 [ 216.528394] ? wait_for_completion+0x8d0/0x8d0 [ 216.532959] ? lock_release+0xa30/0xa30 [ 216.536919] ? fsnotify_first_mark+0x350/0x350 [ 216.541482] ? __fsnotify_parent+0xcc/0x420 [ 216.545788] ? fsnotify+0x14e0/0x14e0 [ 216.549575] ? __sb_end_write+0xac/0xe0 [ 216.553536] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 216.559056] ? fput+0x130/0x1a0 [ 216.562336] ? ksys_write+0x1ae/0x260 [ 216.566123] ? __ia32_sys_read+0xb0/0xb0 [ 216.570169] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 216.575704] __x64_sys_sendto+0xe1/0x1a0 [ 216.579756] do_syscall_64+0x1b9/0x820 [ 216.583629] ? finish_task_switch+0x1d3/0x870 [ 216.588113] ? syscall_return_slowpath+0x5e0/0x5e0 [ 216.593026] ? syscall_return_slowpath+0x31d/0x5e0 [ 216.597950] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 216.602955] ? prepare_exit_to_usermode+0x291/0x3b0 [ 216.607955] ? perf_trace_sys_enter+0xb10/0xb10 [ 216.612607] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 216.617447] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 216.622631] RIP: 0033:0x455e29 [ 216.625807] Code: 1d ba fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 eb b9 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 216.644995] RSP: 002b:00007f80af3c1c68 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 216.652690] RAX: ffffffffffffffda RBX: 00007f80af3c26d4 RCX: 0000000000455e29 [ 216.659941] RDX: fffffffffffffe6e RSI: 0000000020a88f88 RDI: 0000000000000014 [ 216.667193] RBP: 000000000072bea0 R08: 0000000020e68000 R09: 0000000000000010 04:53:46 executing program 5: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000180)='/dev/rtc0\x00', 0x0, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f00000000c0)) fcntl$getownex(r0, 0x10, &(0x7f0000000000)={0x0, 0x0}) ptrace$pokeuser(0x6, r1, 0x5, 0x7ff) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x1}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000300)=ANY=[@ANYRES32=r2, @ANYBLOB="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"], &(0x7f00000002c0)=0xca) 04:53:46 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000011) fallocate(r0, 0x8, 0x8e00000000000000, 0x10000) pwritev(0xffffffffffffffff, &(0x7f0000000a40), 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000680)=[@in={0x2}], 0x10) [ 216.674446] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000015 [ 216.681700] R13: 00000000004c14f2 R14: 00000000004d1a08 R15: 000000000000000f 04:53:46 executing program 0: r0 = socket$inet(0x2, 0x800, 0x2) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000040), &(0x7f0000000080)=0x4) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000011) fallocate(r1, 0x8, 0x0, 0x10000) 04:53:46 executing program 4: r0 = socket$inet6(0xa, 0x3000000000002, 0x0) ioctl(r0, 0x8912, &(0x7f0000000280)="025cc83d6d345f8f762070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_MP_STATE(r3, 0x4004ae99, &(0x7f00000003c0)=0x3) ioctl$KVM_RUN(r3, 0x81a0ae8c, 0x0) clone(0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), &(0x7f0000000180)) r4 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r4, 0x1004000000016) [ 255.357907] list_add corruption. prev->next should be next (ffff8801dae26708), but was 0000000000000000. (prev=ffff8801dae26740). [ 255.371057] ------------[ cut here ]------------